what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Symantec MIME Message Modification Heap Overflow

Symantec MIME Message Modification Heap Overflow: Posted Jun 29, 2016; Authored by Tavis Ormandy, Google Security Research; Symantec attempts to clean or remove components from archives or other multipart containers that they detect as malicious. The code that they use to remove components from MIME encoded messages in CMIMEParser::UpdateHeader() assumes that filenames cannot be longer than 77 characters. This assumption is obviously incorrect, names can be any length, resulting in a very clean heap overflow.; tags | exploit, overflow; systems | linux; advisories | CVE-2016-3644; SHA-256 | 4ee204b77a45094748b81a74a8091d2a517ab376bd6d2bf0dafe5788af13c366; Download | Favorite | View

Top Authors In Last 30 Days

Red Hat 227 files
indoushka 136 files
Jay Turla 68 files
Ubuntu 64 files
Gentoo 33 files
Debian 27 files
h00die 17 files
joev 15 files
sinn3r 15 files
Kris Katterjohn 12 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (377)
CentOS (58)
Cisco (1,939)
Debian (7,112)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (382)
iPhone (108)
IRIX (220)
Juniper (70)
Linux (50,951)
Mac OS X (692)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,659)
Slackware (941)
Solaris (1,613)
SUSE (1,444)
Ubuntu (9,786)
UNIX (9,443)
UnixWare (187)
Windows (6,707)
Other

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec