发布日期:2008-06-16
更新日期:2008-06-19
受影响系统:
ClamAV ClamAV < 0.93.1
描述:
----------------------------------------------------------------------------
BUGTRAQ ID: 29750
CVE(CAN) ID: CVE-2008-2713
Clam AntiVirus是Unix的GPL杀毒工具包,很多邮件网关产品都在使用。
ClamAV的libclamav/petite.c文件中存在拒绝服务漏洞,如果用户受骗打开了特制的Petite加壳可执行程序的话,就会在以下代码段的memcpy()中触发越界读取,导致拒绝服务的情况:
cli_writeint32(curpe+0x24, 0xffffffff);
memcpy(pefile+rawbase, buffer+sections[i].raw, sections[i].rsz);
rawbase+=PESALIGN(sections[i].rsz, 0x200);
curpe+=40;
datasize+=PESALIGN(sections[i].vsz, 0x1000);
<*来源:Damian Put (pucik@cc-team.org)
链接:http://secunia.com/advisories/30657/
http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638
https://wwws.clamav.net/bugzilla/show_bug.cgi?format=multiple&id=1000
*>
建议:
----------------------------------------------------------------------------
厂商补丁:
ClamAV
------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://svn.clamav.net/websvn/diff.php?repname=clamav-
devel&path=/branches/0.93/libclamav/petite.c&rev=3886
您的位置: