[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability
From: Joe Stewart <jstewart@xxxxxxxxx>
Date: Wed, 13 Oct 2004 11:12:51 -0400

A few things I've noticed with this advisory: eEye states that the 
vulnerability is an overflow in dunzip32.dll and that MS04-034 fixes 
it. However, from what I've seen MS04-034 only patches zipfldr.dll. 
Further, MS04-034 claims that Windows ME is not vulnerable, while eEye 
says it is. Also, eEye says that the dunzip32.dll overflow is an issue 
for XP, yet I am unable to find dunzip32.dll on a stock XP SP1 system. 
Is it possible that the eEye release and the MS04-034 bulletin are 
talking about two separate issues?

-Joe

-- 
Joe Stewart, GCIH 
Senior Security Researcher
LURHQ http://www.lurhq.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability
  - From: Derek Soeder

Prev by Date: Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
Next by Date: Re: [Full-Disclosure] Quicky Analysis of a Proxy/Zombie Network
Previous by thread: [Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability
Next by thread: [Full-Disclosure] IRC spying to increase
Index(es):
- Date
- Thread