GOCR PNM File Processing readpgm() Function Overflow

2005-04-15T21:00:16
ID OSVDB:15843
Type osvdb
Reporter Overflow.pl(adv@overflow.pl)
Modified 2005-04-15T21:00:16

Description

Vulnerability Description

A local overflow exists in GOCR. The 'readpgm()' function fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted PNM file either when using the netpbm library or not, a malicious user can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A local overflow exists in GOCR. The 'readpgm()' function fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted PNM file either when using the netpbm library or not, a malicious user can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://jocr.sourceforge.net/index.html Other Advisory URL: http://www.overflow.pl/adv/gocr.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0223.html ISS X-Force ID: 20111 ISS X-Force ID: 20113 CVE-2005-1141 CVE-2005-1142 Bugtraq ID: 13195 Bugtraq ID: 13197