mouse07410 asn1c UPER Ranged Integer Constraint Check Vulnerability

A vulnerability exists in mouse07410 asn1c versions through 0.9.29, a fork of vlm asn1c. The issue arises in the UPER (Unaligned Packed Encoding Rules) decoding process, where asn1c-generated decoders fail to properly enforce INTEGER constraints for positive values exceeding 32 bits. This oversight could allow incorrect or malicious input to be processed without error.

Impact

The vulnerability could lead to the improper handling of INTEGER values in UPER encoding, allowing values outside the defined range to be decoded without validation. This could potentially be exploited to introduce incorrect data or bypass input validation mechanisms.

Reproduction

To reproduce this vulnerability, define an INTEGER type with a range that exceeds 32 bits, such as 1 to 4,000,000,000. When UPER-encoded data representing a value outside this range is decoded, the decoder will incorrectly process the value without error, demonstrating the lack of constraint enforcement for large unsigned integers.

Remediation

Users can update to the latest version of mouse07410 asn1c, where this issue has been addressed.