LICQ Remote Buffer Overflow Vulnerability
BID:2406
Info
LICQ Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 2406 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 20 2001 12:00AM |
| Updated: | Feb 20 2001 12:00AM |
| Credit: | Reported to bugtraq by Stan Bubrouski ([email protected]) on February 20, 2001. |
| Vulnerable: |
LICQ LICQ 1.0.2 LICQ LICQ 1.0.1 LICQ LICQ 0.85 |
| Not Vulnerable: | |
Discussion
LICQ Remote Buffer Overflow Vulnerability
At least one version of LICQ is vulnerable to a remote buffer overflow. By sending many characters (12000-16000) to the port on which LICQ is listening, an attacker can cause excessive data to be copied onto the stack and overwrite critical parts of the stack frame such as the calling functions' return address. Since this data is supplied by the user it can alter the program's flow of execution.
At least one version of LICQ is vulnerable to a remote buffer overflow. By sending many characters (12000-16000) to the port on which LICQ is listening, an attacker can cause excessive data to be copied onto the stack and overwrite critical parts of the stack frame such as the calling functions' return address. Since this data is supplied by the user it can alter the program's flow of execution.
Exploit / POC
Solution / Fix
LICQ Remote Buffer Overflow Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
LICQ LICQ 0.85
LICQ LICQ 1.0.1
LICQ LICQ 1.0.2
Solution:
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
LICQ LICQ 0.85
-
Red Hat 6.2 alpha licq-1.0.2-0.6x.1.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/licq-1.0.2-0.6x.1.alpha. rpm -
Red Hat 6.2 i386 licq-1.0.2-0.6x.1.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/licq-1.0.2-0.6x.1.i386.rp m -
Red Hat 6.2 sparc licq-1.0.2-0.6x.1.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/licq-1.0.2-0.6x.1.sparc. rpm
LICQ LICQ 1.0.1
-
Red Hat 6.2 alpha licq-1.0.2-0.6x.1.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/licq-1.0.2-0.6x.1.alpha. rpm -
Red Hat 6.2 i386 licq-1.0.2-0.6x.1.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/licq-1.0.2-0.6x.1.i386.rp m -
Red Hat 6.2 sparc licq-1.0.2-0.6x.1.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/licq-1.0.2-0.6x.1.sparc. rpm
LICQ LICQ 1.0.2
-
Red Hat 6.2 alpha licq-1.0.2-0.6x.1.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/licq-1.0.2-0.6x.1.alpha. rpm -
Red Hat 6.2 i386 licq-1.0.2-0.6x.1.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/licq-1.0.2-0.6x.1.i386.rp m -
Red Hat 6.2 sparc licq-1.0.2-0.6x.1.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/licq-1.0.2-0.6x.1.sparc. rpm
References
LICQ Remote Buffer Overflow Vulnerability
References:
References: