Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

To: security@xxxxxxxxx
Subject: Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
From: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
Date: Mon, 27 Aug 2007 20:33:56 +0400
Cc: "'BugTraq'" <bugtraq@xxxxxxxxxxxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxxx
In-reply-to: <!&!AAAAAAAAAAAYAAAAAAAAAEqlc0sEqCZMjFiSy1tj+RPCgAAAEAAAACvOH8b4qQVHm1l1i8WZZ9QBAAAAAA==@xxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: http://www.security.nnov.ru
References: <!&!AAAAAAAAAAAYAAAAAAAAAEqlc0sEqCZMjFiSy1tj+RPCgAAAEAAAACvOH8b4qQVHm1l1i8WZZ9QBAAAAAA==@xxxxxxxxx>
Reply-to: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>

Dear security@xxxxxxxxx,

Either  Subject  "UPX  parsing Arbitrary CodeExecution" or vulnerability
description  "Infinite  Loop in UPX packed files parsing" are wrong. Can
you  provide  more  detailed  information  please?  It's  not clear, how
infinite loop can lead to remote code execution.

--Friday, August 24, 2007, 11:15:01 PM, you wrote to bugtraq@xxxxxxxxxxxxxxxxx:


snc> Description:

snc> A remotely exploitable vulnerability has been found in the file parsing
snc> engine.

snc> In detail, the following flaw was determined:

snc> - Infinite Loop in UPX packed files parsing


snc> Impact:

snc> This problem can lead to remote denial of service or arbitrary code
snc> execution if an attacker carefully crafts a file that exploits the
snc> aforementioned vulnerability. The vulnerability is present in Sophos
snc> Anti-virus software listed above on all platforms supported by the affected
snc> products prior to the engine Version 2.48.0. 


-- 
~/ZARAZA http://securityvulns.com/

Follow-Ups:
- Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
  - From: Sergio Alvarez
- Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
  - From: Sergio Alvarez

References:
- n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
  - From: security

Prev by Date: FLEA-2007-0049-1 tar
Next by Date: ePersonnel_RC_2004 Remote File Bug
Previous by thread: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
Next by thread: Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
Index(es):
- Date
- Thread