ELOG weblog buffer overflow

elog-weblog-bo (19313)

High Risk

Description:

ELOG is vulnerable to a heap-based buffer overflow in the weblog application. A remote attacker could exploit this vulnerability to overflow a buffer and execute arbitrary code on the system.

Platforms Affected:

• Stefan Ritt, Elog Web Logbook 2.5.6 and prior

Remedy:

Upgrade to the latest version of ELOG (2.5.7 or later), available from the ELOG Web site. See References.

Consequences:

Gain Access

References:

• ELOG Web site, The ELOG Home Page at http://midas.psi.ch/elog/index.html.
• SecuriTeam 13 Feb 2005, ELOG Remote Shell Exploit at http://www.securiteam.com/exploits/5OP0B0UEUG.html.
• BID-12556: ELOG Web Logbook Multiple Remote Vulnerabilities
• BID-12639: ELOG Web Logbook Attached Filename Remote Buffer Overflow Vulnerability
• BID-12640: ELOG Web Logbook Multiple Remote Unspecified Vulnerabilities
• CVE-2005-0439: Buffer overflow in the decode_post function in ELOG before 2.5.7 allows remote attackers to execute arbitrary code via attachments with long file names.
• SA14268: ELOG Two Vulnerabilities

Reported:

Feb 13, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page