Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

Dear security@nruns.com,

Either Subject "UPX parsing Arbitrary CodeExecution" or vulnerability description "Infinite Loop in UPX packed files parsing" are wrong. Can you provide more detailed information please? It's not clear, how infinite loop can lead to remote code execution.

--Friday, August 24, 2007, 11:15:01 PM, you wrote to bugtraq@securityfocus.com:

snc> Description:

snc> A remotely exploitable vulnerability has been found in the file parsing snc> engine.

snc> In detail, the following flaw was determined:

snc> - Infinite Loop in UPX packed files parsing

snc> Impact:

snc> This problem can lead to remote denial of service or arbitrary code
snc> execution if an attacker carefully crafts a file that exploits the
snc> aforementioned vulnerability. The vulnerability is present in Sophos
snc> Anti-virus software listed above on all platforms supported by the affected
snc> products prior to the engine Version 2.48.0. 

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

--

~/ZARAZA http://securityvulns.com/ Received on Mon Aug 27 16:24:52 2007