SecurityTracker: (Sun Issues Fix for Sun Linux) Re: Window Maker Window Manager Buffer Overflow May Let Remote Users Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Generic) > Window Maker

Vendors: Windowmaker.org

(Sun Issues Fix for Sun Linux) Re: Window Maker Window Manager Buffer Overflow May Let Remote Users Execute Arbitrary Code

SecurityTracker Alert ID: 1007668

SecurityTracker URL: http://securitytracker.com/id/1007668

CVE Reference: CAN-2002-1277 (Links to External Site)

Date: Sep 10 2003

Impact: Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 5.0

Description: A buffer overflow was reported in Window Maker. A remote user could create a specially crafted image file that would cause arbitrary code to be executed by Window Maker.

Debian reported that there is a buffer overflow in Window Maker's image handling code. A user could create a specially crafted image file that would overflow a buffer allocated to hold the image. According to the report, Window Maker allocates the buffer based on the specified image width and height, but does not check to see if the actual image is larger or not.

Debian credits Al Viro with discovering this flaw.

Impact: A remote user may be able to cause Window Maker to execute arbitrary code when viewing a malicious image.

Solution: Sun has issued a fix for Sun Linux 5.0 in Window Maker versions 0.65.1-42 or later, available at:

http://sunsolve.sun.com/patches/linux/security.html

Vendor URL: www.windowmaker.org/ (Links to External Site)

Cause: Boundary error

Underlying OS: Linux (Sun)

Message History: This archive entry is a follow-up to the message listed below.

Window Maker Window Manager Buffer Overflow May Let Remote Users Execute Arbitrary Code

Source Message Contents

Date: Mon, 08 Sep 2003 18:18:35 -0400
Subject: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F55881


55881   Sun Linux 5.0 Buffer Overflow in Window Maker 0.80.0 and Earlier   4 Sep 2003

Description Top

CVE CAN-2002-1277

Sun Linux 5.0 with Window Maker versions 0.65.0 or earlier is affected.

This issue is addressed in the following releases:

Sun Linux Platform

Sun Linux 5.0 with Window Maker versions 0.65.1-42 or later
Sun Linux patches for this issue are available at: 
http://sunsolve.sun.com/patches/linux/security.html.

-----

Sun Alert ID: 55881
Synopsis: Sun Linux 5.0 Buffer Overflow in Window Maker 0.80.0 and Earlier
Category: Security
Product: Sun Linux
BugIDs: 4888529
Avoidance: Workaround, Patch
State: Resolved
Date Released: 23-Jul-2003
Date Closed: 04-Sep-2003
Date Modified: 04-Sep-2003

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC