ICEOWS IceGUI.DLL buffer overflow
| iceows-icegui-bo (36843) |  High Risk |
Description:
ICEOWS is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the IceGUI.DLL extension. By persuading a victim to open a specially-crafted ACE archive containing an overly long filename, a remote attacker could overflow a buffer and execute arbitrary code on the system.
Platforms Affected:
- Raphaël et Béatrice Mounier, ICEOWS 4.20b
Remedy:
No remedy available as of July 4, 2009.
Consequences:
Gain Access
References:
- ICEOWS Web site, ICEOWS is the new name of ArjFolder at http://www.iceows.com/HomePageUS.html.
- vuln.sg Vulnerability Research Advisory 2007-09-28 , ICEOWS ACE Archive Long Filename Buffer Overflow Vulnerability at http://vuln.sg/iceows420b-en.html.
- BID-25844: ICEOWS ICEGUI.DLL ACE File Processing Buffer Overflow Vulnerability
- CVE-2007-5155: IceGUI.DLL in ICEOWS 4.20b invokes a function with incorrect arguments, which allows user-assisted remote attackers to execute arbitrary code via a long filename in the header of an ACE archive, which triggers a stack-based buffer overflow.
- SA26973: ICEOWS IceGUI.DLL ACE Archive Processing Buffer Overflow
- VUPEN/ADV-2007-3312: ICEOWS IceGUI Extension Filename Handling Buffer Overflow Vulnerability
Reported:
Sep 28, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net