WinImage FAT Image Files Multiple Buffer Overflow Vulnerabilities
TITLE: WinImage FAT Image Files Multiple Buffer Overflow Vulnerabilities
CLASS: Boundary Condition Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: May 17 2007 12:00AM
UPDATE: May 17 2007 04:18PM
CREDIT: Tan Chew Keong is credited with the discovery of these vulnerabilities.
VULNERABLE:
WinImage WinImage 8.0.8000NOT VULNERABLE:
Vai alla pagina originale su Security Focus
Discussion
WinImage is prone to multiple buffer-overflow vulnerabilities because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
Remote attackers can exploit these issues by enticing an unsuspecting victim to open a maliciously crafted FAT image file. A successful exploit could let attackers execute arbitrary code in the context of the vulnerable application.
WinImage 8.0.8000 is vulnerable to these issues; other versions may also be affected.
Exploit
The researcher responsible for discovering these issues has developed exploit code to trigger them. This code has not been released publicly.
Solution
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
References
References:
- Vendor Homepage (WinImage)
- WinImage FAT Image Long Pathname Buffer Overflow Vulnerabilities (vuln.sg)