Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long +VIEWS: reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such as a web browser from a web link, which is not properly handled in the FIOgetargv function.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gopher | University_of_minnesota | 3.0.9 (including) | 3.0.9 (including) |
| Gopher | Ubuntu | dapper | * |
| Gopher | Ubuntu | devel | * |
| Gopher | Ubuntu | edgy | * |
| Gopher | Ubuntu | feisty | * |
References
- http://marc.info/?l=bugtraq\u0026m=112559902931614\u0026w=2
- http://secunia.com/advisories/16614/
- http://secunia.com/advisories/17016
- http://www.debian.org/security/2005/dsa-832
- http://www.kb.cert.org/vuls/id/619812
- http://www.securityfocus.com/bid/14693
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22053
- http://marc.info/?l=bugtraq\u0026m=112559902931614\u0026w=2
- http://secunia.com/advisories/16614/
- http://secunia.com/advisories/17016
- http://www.debian.org/security/2005/dsa-832
- http://www.kb.cert.org/vuls/id/619812
- http://www.securityfocus.com/bid/14693
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22053