(ncompress Issues Fix) Gzip Integer Underflow in Processing LZW Compressed Archives May Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1024235 |
|
SecurityTracker URL: http://securitytracker.com/id/1024235
|
|
CVE Reference:
CVE-2010-0001
(Links to External Site)
|
Date: Jul 21 2010
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): prior to 4.2.4.3
|
Description:
A vulnerability was reported in Gzip. A remote user can cause arbitrary code to be executed on the target user's system. ncompress is affected.
A remote user can create a specially crafted LZW compressed gzip archive that, when unzipped by the target user, will trigger an integer underflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.
Aki Helin of Oulu University Secure Programming Group (OUSPG) reported this vulnerability.
|
Impact:
A remote user can create an archive that, when unzipped by the target user, will execute arbitrary code on the target user's system.
|
Solution:
A fix is available for ncompress (4.2.4.3).
The ncompress advisory is available at:
http://ncompress.sourceforge.net/#status
|
Cause:
Boundary error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Wed, 21 Jul 2010 21:13:38 +0000
Subject: ncompress
|
http://ncompress.sourceforge.net/#status
> 4.2.4.3
> * Fix from Fedora/gzip to avoid integer overflow for CVE-2010-0001.
|
|
