SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Security)  >   Antigen Vendors:   Sybari Software
Sybari AntiGen Can Be Crashed By Remote Users Sending Certain Encrypted Files
SecurityTracker Alert ID:  1009437
SecurityTracker URL:  http://securitytracker.com/id/1009437
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 16 2004
Impact:   Denial of service via network

Version(s): 7.0
Description:   A vulnerability was reported in Sybari AntiGen for Domino. An encrypted zip file can cause denial of service conditions on the target system.

Secunia reported that the vendor has disclosed that there is an error in a filter used to decrypt encrypted portions of the Bagel/Beagle virus. A remote user can send a specially crafted message to cause the target AntiGen process to hang. According to the report, the flaw can be triggered if the system is configured with the 'include full path info' option.

Impact:   A remote user can cause the target AntiGen process to crash.
Solution:   The vendor has released a fixed version (7.0 Build 723 SR2), available at:

http://www.sybari.com/download/licensed.asp

Vendor URL:  www.sybari.com/products/antigen_notes.asp (Links to External Site)
Cause:   Exception handling error
Underlying OS:  UNIX (AIX), UNIX (Solaris - SunOS), Windows (NT)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC