MailScanner Crafted ZIP File Scanner Bypass

2005-05-21T16:51:08
ID OSVDB:16728
Type osvdb
Reporter OSVDB
Modified 2005-05-21T16:51:08

Description

Vulnerability Description

MailScanner contains a flaw that may allow a malicious user to bypass virus scanning of ZIP files. It is possible that the flaw may allow ZIP files containing viruses to bypass scanning. The issue is due to the program not correctly parsing size checks on the contents of zip files vs the zip files themselves.

Solution Description

Upgrade to version 4.42.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

MailScanner contains a flaw that may allow a malicious user to bypass virus scanning of ZIP files. It is possible that the flaw may allow ZIP files containing viruses to bypass scanning. The issue is due to the program not correctly parsing size checks on the contents of zip files vs the zip files themselves.

References:

Vendor URL: http://www.sng.ecs.soton.ac.uk/mailscanner/ Vendor Specific News/Changelog Entry: http://www.sng.ecs.soton.ac.uk/mailscanner/ChangeLog Security Tracker: 1014024 Other Advisory URL: http://secwatch.org/advisories/1010659/ CVE-2005-1706