Members
  • Total Members: 12818
  • Latest: martin
Stats
  • Total Posts: 28536
  • Total Topics: 8240
  • Online Today: 1005
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: Four vulnerabilities affect two IM apps  (Read 1364 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Four vulnerabilities affect two IM apps
« on: 23. May 2008., 19:43:40 »


On Thursday, Zero Day Initiative announced four flaws affecting two instant-messaging applications, three affecting Cerulean Studios Trillian Pro, and one affecting IBM Lotus Sametime. Zero Day Initiative is a part of TippingPoint and is controversial in that it pays researchers for finding flaws.

The first flaw in Trillian affects the header parsing code for the msn protocol and could allow remote attackers to execute arbitrary code. The advisory states "when processing the X-MMS-IM-FORMAT header, certain attributes are copied into a buffer located on the stack without any length verification which can eventually lead to code execution with the privileges of the user that is running the application."

The second flaw in Trillian affects XML parsing in talk.dll and could allow remote attackers to execute arbitrary code. The advisory states "when processing certain malformed attributes within...'IMG' tags, it is possible to overwrite past an allocated heap chunk which can eventually lead to code execution under the context of the currently user."

The third and final flaw in Trillian affects the FONT tag and exploitation may occur over the AIM network or via direct connections. The advisory states "the value for any attribute is copied into a stack based buffer via sprintf() which can result in a buffer overrun and can be subsequently leveraged to execute arbitrary code under the privileges of the logged in user."

In response, Cerulean Studios has released Trillian v3.1.10.0 to address these flaws.

The final IM vulnerability affects IBM Lotus Sametime and allows remote attackers to execute arbitrary code. The advisory says "a specially crafted URL can be passed into a vulnerable sscanf() function that will result in a stack overflow resulting in the ability to execute arbitrary code."

In response, IBM has issued an update.

News Source: CNET

Samker's Computer Forum - SCforum.info

Four vulnerabilities affect two IM apps
« on: 23. May 2008., 19:43:40 »




 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising