BugTraq
n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 24 2007 07:15PM
security nruns com (1 replies)
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 27 2007 04:33PM
3APA3A (3APA3A SECURITY NNOV RU) (2 replies)
Dear security (at) nruns (dot) com [email concealed],

Either Subject "UPX parsing Arbitrary CodeExecution" or vulnerability
description "Infinite Loop in UPX packed files parsing" are wrong. Can
you provide more detailed information please? It's not clear, how
infinite loop can lead to remote code execution.

--Friday, August 24, 2007, 11:15:01 PM, you wrote to bugtraq (at) securityfocus (dot) com [email concealed]:

snc> Description:

snc> A remotely exploitable vulnerability has been found in the file parsing
snc> engine.

snc> In detail, the following flaw was determined:

snc> - Infinite Loop in UPX packed files parsing

snc> Impact:

snc> This problem can lead to remote denial of service or arbitrary code
snc> execution if an attacker carefully crafts a file that exploits the
snc> aforementioned vulnerability. The vulnerability is present in Sophos
snc> Anti-virus software listed above on all platforms supported by the affected
snc> products prior to the engine Version 2.48.0.

--
~/ZARAZA http://securityvulns.com/

[ reply ]
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sep 03 2007 11:39AM
Sergio Alvarez (sergio alvarez nruns com) (1 replies)
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 27 2007 08:41PM
Sergio Alvarez (sergio alvarez nruns com)


 

Privacy Statement
Copyright 2010, SecurityFocus