PicoPhone Internet Phone Remote Buffer Overflow Vulnerability

Bugtraq ID:	9969
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 24 2004 12:00AM
Updated:	Mar 24 2004 12:00AM
Credit:	Disclosure of this issue is credited to Luigi Auriemma <[email protected]>.
Vulnerable:	Picophone Internet Telephone 1.63
Not Vulnerable:	Picophone Internet Telephone 1.64

PicoPhone Internet Phone Remote Buffer Overflow Vulnerability

It has been reported that Picophone is prone to a remote buffer overflow vulnerability. This issue is due to the application failing to verify the size of user input before storing it in a finite buffer.

Successful exploitation of this issue will cause a denial of service condition to be triggered. The attacker may also leverage this issue to execute arbitrary code; this code would be executed in the security context of the user running the affected process.

PicoPhone Internet Phone Remote Buffer Overflow Vulnerability

The following exploit has been supplied:

• /data/vulnerabilities/exploits/picophoneExploit.zip

PicoPhone Internet Phone Remote Buffer Overflow Vulnerability

Solution:
The vendor has released an upgrade that resolves this issue.


Picophone Internet Telephone 1.63

• Picophone PicoPhone164.exe
  http://www.vitez.it/picophone/PicoPhone164.exe

PicoPhone Internet Phone Remote Buffer Overflow Vulnerability

References:

• Product Home Page (Picophone)
  
• Buffer overflow in PicoPhone 1.63 (Luigi Auriemma )