Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: Decompression Bombs [...missed something]
From: Bipin Gautam. <door_hunt3r () blackcodemail com>
Date: 6 Feb 2004 17:55:44 -0000
In-Reply-To: <401FD489.8070602 () aerasec de>


isn't the concept same as the one I produced 3 months ago in...
http://www.securityfocus.com/bid/8572/info/

indeed the replica... of my old concept!

[... fine, A new class of bug! & in the wild AGAIN ]



As a followup to http://www.securityfocus.com/bid/9393/, where we 
pointed out vulnerabilities of some antivirus-gateways while 
decompressing bzip2-bombs, we were interested in the behaviour of 
various applications that process compressed data.


We've created several bombs (bzip2, gzip, zip, mime-embedded bombs, png 

and gif graphics, openoffice zip bombs). With these we tested some more 
applications like additional antivirus engines, various web browsers, 
openoffice.org, and the Gimp.

As a result, much more applications as we thought crashed. The 
manufacturers of software should care more about the processing of 
untrusted input.

For details see our full advisory, written by Dr. Peter Bieringer: 
http://www.aerasec.de/security/advisories/decompression-bomb-vulnerability.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]