Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

Bugtraq ID:	21208
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Nov 19 2006 12:00AM
Updated:	Nov 23 2006 09:05PM
Credit:	Discovered by Tan Chew Keong.
Vulnerable:	Knownsoft Turbo Searcher Standard Edition 3.30 build 052705 Knownsoft Turbo Searcher Network Edition 3.30 build 052705
Not Vulnerable:

Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

Turbo Searcher is prone to a buffer-overflow vulnerability when handling malformed ARJ archives. Successful exploitation may allow an attacker to crash the application crash or execute arbitrary code.

Turbo Searcher Standard Edition version 3.30 build 052705 and Turbo Searcher Network Edition version 3.30 build 052705 are known to be vulnerable; other versions may also be affected.

Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

The researcher responsible for discovering this issue has developed an exploit to trigger this issue. This exploit is not publicly available.

Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

References:

• Turbo Searcher 7-Zip ARJ Plugin Buffer Overflow Vulnerability (Tan Chew Keong)
  
• Turbo Searcher Product Page (Knownsoft)