LibVC VCard Processing Buffer Overflow Vulnerability
BID:17237
Info
LibVC VCard Processing Buffer Overflow Vulnerability
| Bugtraq ID: | 17237 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-1356 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 21 2006 12:00AM |
| Updated: | Mar 27 2006 10:24PM |
| Credit: | trew <[email protected]> is credited with the discovery of this vulnerability. |
| Vulnerable: |
Rolo Rolo 011 LibVC LibVC 003 |
| Not Vulnerable: | |
Discussion
LibVC VCard Processing Buffer Overflow Vulnerability
LibVC is prone to a buffer-overflow vulnerability. This issue is due to a failure in the library to perform proper bounds checks on user-supplied data before using it in a finite-sized buffer.
The issue occurs when the application handles excessive data supplied with a vcard file.
An attacker can exploit this issue to crash the affected library, effectively denying service. Arbitrary code execution is also possible, which may facilitate a compromise of the underlying system.
LibVC is prone to a buffer-overflow vulnerability. This issue is due to a failure in the library to perform proper bounds checks on user-supplied data before using it in a finite-sized buffer.
The issue occurs when the application handles excessive data supplied with a vcard file.
An attacker can exploit this issue to crash the affected library, effectively denying service. Arbitrary code execution is also possible, which may facilitate a compromise of the underlying system.
Exploit / POC
LibVC VCard Processing Buffer Overflow Vulnerability
Currently, we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
The following proof of concept is available:
[example file]
BEGIN:VCARD
VERSION:3.0
F:<bunch of a's>
N:;
END:VCARD
[/example file]
Currently, we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
The following proof of concept is available:
[example file]
BEGIN:VCARD
VERSION:3.0
F:<bunch of a's>
N:;
END:VCARD
[/example file]
Solution / Fix
LibVC VCard Processing Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected].
References
LibVC VCard Processing Buffer Overflow Vulnerability
References:
References:
- Libvc (Libvc)
- libvc (vCard) count_vcards() overflow ([email protected])
- The Rolo Project (Rolo)