Sylpheed message header buffer overflow

sylpheed-message-header-bo (19600) The risk level is classified as HighHigh Risk

Description:

Sylpheed could allow a remote attacker to execute arbitrary commands. A remote attacker can send a message with a specially-crafted message header containing non-ASCII characters to overflow a buffer when the victim replies to the message, causing a denial of service or possibly allowing the attacker to execute arbitrary code on the system.


Consequences:

Gain Access

Remedy:

Upgrade to latest version of Sylpheed (1.0.3 or later), available from the Sylpheed Web site. See References.

—OR—

Upgrade to the latest development version of Sylpheed (1.9.5 or later), available from the Sylpheed Web site. See References.

For Red Hat Linux:
Refer to RHSA-2005:303-05 for patch, upgrade, or suggested workaround information. See References.

For Gentoo Linux:
Refer to Gentoo Linux Security Announcement GLSA 2005-03-26 for patch, upgrade, or suggested workaround information. See References.

References:

  • CIAC INFORMATION BULLETIN P-155: Sylpheed Security Update.
  • Sylpheed Web site: Sylpheed- a GTK+ based, lightweight, and fast e-mail client -.
  • BID-12730: Sylpheed Mail Client Buffer Overflow Vulnerability
  • CVE-2005-0667: Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message.
  • GLSA-200503-26: Sylpheed, Sylpheed-claws: Message reply overflow
  • RHSA-2005-303: sylpheed security update
  • SA14491: Sylpheed Message Reply Buffer Overflow Vulnerability
  • SECTRACK ID: 1013376: Sylpheed Buffer Overflow in Processing Message Headers May Let Remote Users Execute Arbitrary Code
  • SUSE-SR:2005:011: SUSE Security Summary Report

Platforms Affected:

  • Gentoo Linux
  • Hiroyuki Yamamoto Sylpheed prior to 1.0.3
  • Hiroyuki Yamamoto Sylpheed Development prior to 1.9.5
  • RedHat Enterprise Linux 2.1 ES
  • RedHat Enterprise Linux 2.1 AS
  • RedHat Enterprise Linux 2.1 WS
  • RedHat Linux Advanced Workstation 2.1 Itanium
  • Turbolinux Turbolinux 10 Desktop
  • Turbolinux Turbolinux 10 F...
  • Turbolinux Turbolinux 7 Server
  • Turbolinux Turbolinux 7 Workstation
  • Turbolinux Turbolinux 8 Server
  • Turbolinux Turbolinux 8 Workstation
  • Turbolinux Turbolinux Home

Reported:

Mar 07, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page