email attachment file extension potential buffer overflow has been detected

email-attachment-extension-detected (16685) The risk level is classified as MediumMedium Risk

Description:

An email attachment that has a file extension used by an application that is vulnerable to a buffer overflow has been detected. By creating a specially-crafted file, a remote attacker could overflow a buffer and execute arbitrary code on the system with user privileges, once the file is opened with the vulnerable application. A remote attacker could exploit this vulnerability by sending the malicious file to a victim in an email.


Consequences:

Gain Access

Remedy:

For Microsoft Windows:
Apply the appropriate patch for your system, as listed in the Microsoft Security Bulletin MS04-022. See References.

For Adobe Acrobat Reader:
Upgrade to the latest version of Acrobat Reader (6.0.2 or later), available from the Adobe Systems Incorporated Downloads Web page. See References.

References:

Platforms Affected:

  • Adobe Acrobat Reader 6.0.1
  • Microsoft Internet Explorer 6.0
  • Various vendors Any operating system

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page