• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Epic Userhost_Cmd_Returned Buffer Overflow Vulnerability

Solution:
It has been reported that this vulnerability will be fixed in the 1.1.x series of Epic. This has not yet been confirmed by the vendor.

Debian has issued advisories DSA-287-1 and DSA-298-1 for EPIC and EPIC4 respectively. Information about obtaining and applying the fixes is contained in the advisories. Users of the apt-get system are advised to issue the following commands to upgrade systems:

apt-get update
apt-get upgrade

Fixes available:


Epic Epic4 1.0.1

• Slackware epic4-1.0.1-i386-3.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-8.1/patches/packages/e pic4-1.0.1-i386-3.tgz


• Slackware epic4-1.0.1-i386-3.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/e pic4-1.0.1-i386-3.tgz