SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (E-mail Server)  >   Isoqlog Vendors:   EnderUNIX SDT
Isoqlog Buffer Overflows May Let Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1010292
SecurityTracker URL:  http://securitytracker.com/id/1010292
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Updated:  May 30 2004
Original Entry Date:  May 26 2004
Impact:   Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2.2-BETA
Description:   Some buffer overflow vulnerabilities were reported in Isoqlog. A remote user may be able to execute arbitrary code on the target system.

Virulent at siyahsapka.org reported that the readSendmailLogFile() function in 'parser.c' contains a buffer overflow. A local user can create a specially crafted log file entry so that when a target user runs Isoqlog, the buffer overflow is triggered and arbitrary code executed on the target system with the privileges of the target user.

The vendor reports that there are additional buffer overflows that may be exploitable by a remote user.

According to the vendor, the parseQmailFromBytesLine(), parseQmailToRemoteLine(), parseQmailToLocalLine(), parseSendmailFromBytesLine(), parseSendmailToLine(), parseEximFromBytesLine(), and parseEximToLine() functions in 'parser.c' contain remotely exploitable buffer overflows.

Also, the 'loadconfig.c' file reportedly contains buffer overflows in the loadconfig() and removespaces() functions.

The vendor also notes that the loadLang() function in 'LangCfg.c' contains some buffer overflows.

Some functions in the 'Html.c' file do not perform bounds checking, the vendor said.

The vendor also indicated that 'Dir.c' contains some locally exploitable buffer overflows.
Impact:   A remote user may be able to execute arbitrary code on the target system.
Solution:   The vendor has released a fixed version (2.2), available at:

http://www.enderunix.org/isoqlog/isoqlog-2.2.tar.gz
Vendor URL:  www.enderunix.org/isoqlog/ (Links to External Site)
Cause:   Boundary error
Underlying OS:   Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
May 30 2004 (Vendor Issues Fix) Isoqlog Buffer Overflow May Let Local Users Gain Elevated Privileges   (Murat Balaban <murat@enderunix.org>)
The vendor has issued a fix.


 Source Message Contents


[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC