ISS X-Force Database: sylpheed-incputerror-format-string(36238): Sylpheed inc_put

Sylpheed inc_put_error() function format string

sylpheed-incputerror-format-string (36238)

High Risk

Description:

Sylpheed could allow a remote attacker to execute arbitrary code on the system, caused by a format string vulnerability in the inc_put_error() function. By persuading a victim to connect to a malformed POP3 server, a remote attacker could exploit this vulnerability by sending a specially-crafted POP3 server response containing malicious format string specifiers to execute arbitrary code on the system.

Note: This vulnerability also affects Sylpheed-Claws Mail and Sylpheed-Claws.

Platforms Affected:

Gentoo, Linux
Hiroyuki Yamamoto, Sylpheed 2.4.4 and prior
SuSE, SuSE Linux 10.0
SuSE, SuSE Linux 10.1
Sylpheed-Claws, Sylpheed-Claws 1.9.100 and prior
Sylpheed-Claws, Sylpheed-Claws Mail 2.10.0 and prior

Remedy:

For Sylpheed:
Apply the fix for this vulnerability, available from the Sylpheed SVN Repository. See References.

For Sylpheed-Claws Mail:
Apply the fix for this vulnerability, available from the Sylpheed-Claws Mail CVS Repository. See References.

For other distributions:
Contact your vendor for upgrade or patch information.

Consequences:

Gain Access

References:

SA26550 , Sylpheed / Sylpheed-Claws POP3 Format String Vulnerability at http://secunia.com/advisories/26550.
Secunia Research 24/08/2007, Sylpheed / Sylpheed-Claws POP3 Format String Vulnerability at http://secunia.com/secunia_research/2007-70/advisory/.
Sylpheed SVN Repository, Sylpheed at http://sylpheed.sraoss.jp/en/.
Sylpheed Web site, Sylpheed- a GTK+ based, lightweight, and fast e-mail client - at http://sylpheed.good-day.net/. (Site comes up in Japanese but an English link is provided.)
Sylpheed-Claws Mail CVS Repository, Sylpheed-Claws Mail at http://www.claws-mail.org/cvs.php?section=projects.
Sylpheed-Claws Mail Web site, Sylpheed-Claws Mail at http://www.claws-mail.org/.
Sylpheed-Claws Web site, Sylpheed-Claws - the email client that bites! at http://www.sylpheed-claws.net/.
BID-25430: Sylpheed and Sylpheed-Claws POP3 Format String Vulnerability
CVE-2007-2958: Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.
GLSA-200710-29: Sylpheed, Claws Mail: User-assisted remote execution of arbitrary code
SA26550: Sylpheed / Sylpheed-Claws POP3 Format String Vulnerability
SUSE-SR:2007:020: SUSE Security Summary Report
VUPEN/ADV-2007-2971: Sylpheed and Sylpheed-Claws POP3 inc_put_error() Format String Vulnerability

Reported:

Aug 24, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page