2fax expandtabs() Function Overflow

2004-12-16T23:17:01
ID OSVDB:12425
Type osvdb
Reporter Ariel Berkman()
Modified 2004-12-16T23:17:01

Description

Vulnerability Description

A remote overflow exists in 2fax. The 2fax fails to check boundary error in the "expandtabs()" function, resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code on the system, resulting in a loss of integrity and confidentiality.

Solution Description

Upgrade to version 3.05 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in 2fax. The 2fax fails to check boundary error in the "expandtabs()" function, resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code on the system, resulting in a loss of integrity and confidentiality.

References:

Vendor URL: http://www.atbas.org/2fax/ Security Tracker: 1012564 Secunia Advisory ID:13500 Other Advisory URL: http://tigger.uic.edu/~jlongs2/holes/2fax.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-12/0195.html CVE-2004-1255