exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

FeedDemon 2.7 Buffer Overflow

FeedDemon 2.7 Buffer Overflow
Posted Feb 5, 2009
Authored by SVRT | Site security.bkis.vn

FeedDemon versions 2.7 and below suffer from a remote buffer overflow vulnerability.

tags | advisory, remote, overflow
SHA-256 | cc0d40472e74081a342c3ee71a086147180630b62e1d792fd074ed7e63407b1c

FeedDemon 2.7 Buffer Overflow

Change Mirror Download
Title :  FeedDemon Buffer OverFlow Vulnerability

1. General Information

FeedDemon is known as the most popular Windows RSS Reader which allows users
to view and manage easily RSS feeds from their desktop. In January 2009,
SVRT-BKIS detected a buffer overflow vulnerability in this software. Taking
advantage of this flaw, hackers can perform remote attacks, install viruses,
steal private information, and even take control of users' systems. We have
sent the alert to the manufacturer.

Details : http://security.bkis.vn/?p=329
SVRT Advisory : SVRT-02-09
Initial vendor notification : 01-21-2009
Release Date : 02-05-2009
Update Date : 02-05-2009
Discovered by : Le Nhat Minh (SVRT-Bkis)
Security Rating : Critical
Impact : Remote Code Execution
Affected Software : FeedDemon (version <= 2.7)

2. Technical Description

The vulnerability was found in the processing of OPML (Outline Processor
Markup Language) file, which is an XML format for outlines used by RSS
reader to store and manage RSS feeds. With OPML, users can easily share
their RSS feed lists with others or export these lists to use in other RSS
feed readers. However, FeedDemon does not handle this format well enough,
which leads to buffer overflow flaw.

More precisely, the error occurs when users import an OPML file, whose
"outline" tag has a too long "text" attribute. FeedDemon, on parsing this
file, will crash; and if malicious code is embedded into that file, it will
be executed and give hackers system control.

Exploitation can be carried out via a file stored on victims' computers or
simply a link to such file. It is this factor that increases the threat of
users' computers being attack remotely.

Taking advantage of the above vulnerability, a hacker might prepare a
malicious OPML file, and somehow trick users into importing it. He/she might
send the file to users directly or send them a link to that file instead.
Right after users have imported the file, malicious code will be executed
and they will become hacker's victims.

3. Solution

Rating this vulnerability high severity, and due to the fact that the
manufacturer hasn't released any official patch for it. Bkis recommends that
users of FeedDemon should be careful when importing RSS feed lists from
untrustworthy sources.

About SVRT-Bkis : SVRT, which is short for Security Vulnerability Research
Team, is one of Bkis researching groups. SVRT specializes in the detection,
alert and announcement of security vulnerabilities in software, operating
systems, network protocols and embedded systems.

About Bkis : Bkis is Vietnamese leading Center in researching, deploying
network security software and solutions.

Login or Register to add favorites

File Archive:

December 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    0 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    32 Files
  • 5
    Dec 5th
    10 Files
  • 6
    Dec 6th
    14 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2022 Packet Storm. All rights reserved.

Security Services
Hosting By