Info

Disclosure

Nov 08, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A flaw exists in the handling of importing LDIF files into the address book portion of Sylpheed. The flaw is triggered when a single line exceeds 2048 characters, and a stack-based overflow occurs. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to Sylpheed 2.1.6, Sylpheed-Claws 1.9.100 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Sylpheed	Sylpheed	2.0.3
		2.0.2
		2.0.1
		2.0.0
		2.1.5
		2.1.4
		2.1.3
		2.1.2
		2.1.1
		2.1.0
		1.0.0
		1.0.1
		1.0.2
		1.0.3
		1.0.4
		1.0.5
	Sylpheed-Claws	1.9.99
	Sylpheed-Claws	1.9.9

References

Secunia Advisory ID: 17492 17525 17540 17678 17831
CVE ID: 2005-3354 (see also: NVD)
Other Advisory URL: http://lists.suse.com/archive/suse-security-announce/2005-Dec/0001.html
http://www.debian.org/security/2005/dsa-906
http://www.gentoo.org/security/en/glsa/glsa-200511-13.xml
Vendor Specific News/Changelog Entry: http://sylpheed.good-day.net/en/news.html
https://sourceforge.net/project/shownotes.php?release_id=369321

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/20675