#VU44782 Buffer overflow in Stunnel - CVE-2011-2940

Cybersecurity Help s.r.o.

Published: 2011-08-25 | Updated: 2020-08-11

Vulnerability identifier: #VU44782

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2011-2940

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Stunnel
Client/Desktop applications / Encryption software

Vendor: Stunnel.org

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

stunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Stunnel: 4.40 - 4.41

External links
https://secunia.com/advisories/45705
https://securitytracker.com/id?1025959
https://stunnel.org/?page=sdf_ChangeLog
https://www.openwall.com/lists/oss-security/2011/08/19/18
https://www.openwall.com/lists/oss-security/2011/08/19/6
https://www.osvdb.org/74600
https://www.securityfocus.com/bid/49254
https://www.stunnel.org/pipermail/stunnel-announce/2011-August/000059.html
https://bugzilla.redhat.com/show_bug.cgi?id=732068
https://exchange.xforce.ibmcloud.com/vulnerabilities/69318

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for stunnel

Buffer overflow in Stunnel