|
|
>> SpeedProject Products ZIP/UUE Archives Buffer Overflow Vulnerabilities
|
Title : SpeedProject Products ZIP/UUE Archives Buffer Overflow Vulnerabilities
VUPEN ID : VUPEN/ADV-2005-2570
CVE ID : CVE-2005-3831 - CVE-2005-3832
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-11-24
|
Two vulnerabilities were identified in SpeedProject SpeedCommander, Squeez and ZipStar, which could be exploited by attackers to execute arbitrary commands.
The first issue is due to a stack overflow error in "CxZIP60.dll" and "CxZIP60u.dll" when constructing, via the "lstrcat()" function, the full pathname of a file extracted from a ZIP archive, which could be exploited to execute arbitrary code when a specially crafted archive is extracted.
The second vulnerability is due to a stack overflow error in "CxUux60.dll" and "CxUux60u.dll" when constructing, via the "lstrcpy()" function, the full pathname of a file decoded from a UUE archive, which could be exploited to execute arbitrary code when a specially crafted archive is extracted.
Affected Products
SpeedCommander versions prior to 10.52 Build 4450
SpeedCommander versions prior to 11.01 Build 4450
Squeez versions prior to 5.10 Build 4460
ZipStar versions prior to 5.10 Build 4460
Solution
Upgrade to SpeedCommander 10.52 Build 4450, SpeedCommander 11.01 Build 4450, Squeez 5.10 Build 4460, or ZipStar 5.10 Build 4460 :
http://www.speedproject.de/enu/download.html
References
http://www.vupen.com/english/advisories/2005/2570
http://secunia.com/secunia_research/2005-60/advisory/
Credits
Vulnerabilities reported by Secunia Research
ChangeLog
2005-11-24 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
