Full Disclosure mailing list archives
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
From: Sergio Alvarez <sergio.alvarez () nruns com>
Date: Mon, 03 Sep 2007 13:39:40 +0200
Hi all, Just want to let you know that Sophos has updated their advisory: http://www.sophos.com/support/knowledgebase/article/28407.html To make things a bit more clear, it's a one byte overwrite in an arbitrary location caused by an integer handling issue while parsing the UPX file format. The advisory at http://www.nruns.com/security_advisory.php will be updated soon. Cheers, Sergio _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sergio Alvarez (Sep 03)
- Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Jan Münther (Sep 03)
- Re: [Sec] Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Thierry Zoller (Sep 03)
- Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Jan Münther (Sep 03)