InnerMedia DynaZip Remote Stack Based Buffer Overflow Vulnerability

Bugtraq ID: 11555
Class: Boundary Condition Error
CVE: CVE-2004-1094
Remote: Yes
Local: No
Published: Oct 27 2004 12:00AM
Updated: Sep 07 2006 09:23PM
Credit: Discovery of this vulnerability is credited to Yuji Ukai of eEye Digital Security and John Heasman of NGSSoftware. Juha-Matti Laurio of Networksecurity.fi discovered this issue in CheckMark Payroll and IBM Lotus Notes.
Vulnerable: Real Networks RealPlayer 10.5 v6.0.12.1056
Real Networks RealPlayer 10.5 v6.0.12.1053
Real Networks RealPlayer 10.5 v6.0.12.1040
Real Networks RealPlayer 10.5 Beta v6.0.12.1016
Real Networks RealPlayer 10.5
Real Networks RealPlayer 10.0 BETA
Real Networks RealPlayer 10.0 v6.0.12.690
Real Networks RealPlayer 10.0
+ S.u.S.E. cvsup-16.1h-43.i586.rpm
+ S.u.S.E. Linux Personal 9.3
+ S.u.S.E. Linux Personal 9.2
Real Networks RealOne Player 2.0
Real Networks RealOne Player 1.0
McAfee VirusScan 10.0.21
McAfee SecurityCenter Agent 6.0 .16
InnerMedia DynaZip Library 3.0 .0.14
InnerMedia DynaZip Library 5.00.03
InnerMedia DynaZip Library 5.00.02
InnerMedia DynaZip Library 5.00.01
InnerMedia DynaZip Library 5.00.00
IBM Lotus Notes 6.5.4
IBM Lotus Notes 6.5.3
IBM Lotus Notes 6.5.2
IBM Lotus Notes 6.5.1
IBM Lotus Notes 6.5
dtSearch Corp dtSearch with Spider 7.10 Build 7045
dtSearch Corp dtSearch with Spider
dtSearch Corp dtSearch 6.5 Build 6608
dtSearch Corp dtSearch 5.25
CheckMark Software Inc. MultiLedger 7.0
CheckMark Software Inc. MultiLedger 6.0.3
CheckMark Software Inc. CheckMark Payroll 3.9.6
CheckMark Software Inc. CheckMark Payroll 3.9.5
CheckMark Software Inc. CheckMark Payroll 3.9.4
CheckMark Software Inc. CheckMark Payroll 3.9.3
CheckMark Software Inc. CheckMark Payroll 3.9.2
CheckMark Software Inc. CheckMark Payroll 3.9.1
Not Vulnerable: Real Networks RealPlayer 10.5 v6.0.12.1056
InnerMedia DynaZip Library 5.00.04
IBM Lotus Notes 6.5.5
IBM Lotus Notes 7.0
dtSearch Corp dtSearch with Spider 7.20 Build 7136
CheckMark Software Inc. MultiLedger 7.0.2
CheckMark Software Inc. CheckMark Payroll 3.9.7


 

Privacy Statement
Copyright 2010, SecurityFocus