Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

Hi all,

Just want to let you know that Sophos has updated their advisory:

http://www.sophos.com/support/knowledgebase/article/28407.html

To make things a bit more clear, it's a one byte overwrite in an
arbitrary location caused by an integer handling issue while parsing the
UPX file format.

The advisory at http://www.nruns.com/security_advisory.php will be
updated soon.

Cheers,
Sergio

Follow-Ups:
- Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
  - From: Jan Münther

Relevant Pages

Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary Co
... Just want to let you know that Sophos has updated their advisory: ... To make things a bit more clear, it's a one byte overwrite in an ... The advisory at http://www.nruns.com/security_advisory.php will be ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
[Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeEx
... Sophos Anti-Virus for Unix/Linux ... A remotely exploitable vulnerability has been found in the file parsing ... Unaltered electronic reproduction of this advisory is permitted. ...
(Full-Disclosure)
n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
... Sophos Anti-Virus for Unix/Linux ... A remotely exploitable vulnerability has been found in the file parsing ... Unaltered electronic reproduction of this advisory is permitted. ...
(Bugtraq)