• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Epic Status Bar Writing Buffer Overflow Vulnerability

Solution:
It has been reported that this vulnerability will be fixed in the 1.1.x series of Epic. This has not yet been confirmed by the vendor.

Debian has issued advisories DSA-287-1 and DSA-298-1 for EPIC and EPIC4 respectively. Information about obtaining and applying the fixes is contained in the advisories. Users of the apt-get system are advised to issue the following commands to upgrade systems:

apt-get update
apt-get upgrade

Fixes available:


Epic Epic4 pre2.508

• Debian epic4_pre2.508-2.3_alpha.deb
  Debian GNU/Linux 2.2 (potato)
  http://security.debian.org/pool/updates/main/e/epic4/epic4_pre2.508-2. 3_alpha.deb


• Debian epic4_pre2.508-2.3_arm.deb
  Debian GNU/Linux 2.2 (potato)
  http://security.debian.org/pool/updates/main/e/epic4/epic4_pre2.508-2. 3_arm.deb

Epic Epic4 1.0.1

• Slackware epic4-1.0.1-i386-3.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-8.1/patches/packages/e pic4-1.0.1-i386-3.tgz


• Slackware epic4-1.0.1-i386-3.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/e pic4-1.0.1-i386-3.tgz