BugTraq
n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 24 2007 07:15PM
security nruns com (1 replies)
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 27 2007 04:33PM
3APA3A (3APA3A SECURITY NNOV RU) (2 replies)
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sep 03 2007 11:39AM
Sergio Alvarez (sergio alvarez nruns com) (1 replies)
Hi all,

Just want to let you know that Sophos has updated their advisory:

http://www.sophos.com/support/knowledgebase/article/28407.html

To make things a bit more clear, it's a one byte overwrite in an
arbitrary location caused by an integer handling issue while parsing the
UPX file format.

The advisory at http://www.nruns.com/security_advisory.php will be
updated soon.

Cheers,
Sergio

[ reply ]
Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sep 03 2007 02:43PM
Jan Münther (jan muenther nruns com) (1 replies)
Re: [Sec] Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sep 03 2007 05:09PM
Thierry Zoller (Thierry Zoller nruns com)
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Aug 27 2007 08:41PM
Sergio Alvarez (sergio alvarez nruns com)


 

Privacy Statement
Copyright 2010, SecurityFocus