|
|
|
View Notes By
|
|
|
|
Other Documents
|
|
|
|
|
Vulnerability Note VU#596848
gzip contains an infinite loop vulnerability in its LZH handling
OverviewThe gzip program contains a infinite loop vulnerability that may allow an attacker to create a denial-of-service condition.
I. DescriptionThe gzip program is used to compress and decompress archived files.
A infinite loop vulnerability exists in the way gzip handles certain files. An attacker may be able to exploit this vulnerability by convincing a user to open a specially crafted gzip file.
Note that the attacker could either convince a user to open a malicious gzip file, or save the file in a place where another program would call gzip to decompress the archive.
II. ImpactA remote, unauthenticated attacker may be able to create a denial-of-service condition.
III. SolutionUpgrade
This issue has been addressed in gzip 1.3.6. See the systems affected section of this document for information about specific vendors.
Workarounds
Until updates can be applied, the following workarounds may mitigate the impact of this vulnerability:
- Do not decompress gzip files that are received from unknown sources.
- Do not execute gzip with system-level privileges.
- Some automated processes may rely on gzip to complete their tasks. When possible, disable such programs or do not allow them to execute gzip with root privileges.
Systems Affected
| Vendor | Status | Date Updated |
|---|
| 3com, Inc. | Unknown | 19-Sep-2006 |
| Aladdin Knowledge Systems | Unknown | 19-Sep-2006 |
| Alcatel | Unknown | 19-Sep-2006 |
| Apple Computer, Inc. | Vulnerable | 5-Dec-2006 |
| AT&T | Unknown | 19-Sep-2006 |
| Avaya, Inc. | Unknown | 19-Sep-2006 |
| Avici Systems, Inc. | Unknown | 19-Sep-2006 |
| Borderware Technologies | Unknown | 19-Sep-2006 |
| Charlotte's Web Networks | Unknown | 19-Sep-2006 |
| Check Point Software Technologies | Unknown | 19-Sep-2006 |
| Chiaro Networks, Inc. | Unknown | 19-Sep-2006 |
| Cisco Systems, Inc. | Unknown | 19-Sep-2006 |
| Clavister | Unknown | 19-Sep-2006 |
| Command Software Systems | Unknown | 19-Sep-2006 |
| Computer Associates | Not Vulnerable | 27-Jul-2007 |
| Conectiva Inc. | Unknown | 19-Sep-2006 |
| Cray Inc. | Unknown | 19-Sep-2006 |
| CyberSoft, Inc. | Unknown | 19-Sep-2006 |
| D-Link Systems, Inc. | Unknown | 19-Sep-2006 |
| Data Connection, Ltd. | Unknown | 19-Sep-2006 |
| DataFellows | Unknown | 19-Sep-2006 |
| Debian GNU/Linux | Vulnerable | 4-Oct-2006 |
| Debian GNU/Linux | Unknown | 19-Sep-2006 |
| EMC, Inc. (formerly Data General Corporation) | Unknown | 19-Sep-2006 |
| Engarde Secure Linux | Unknown | 19-Sep-2006 |
| Ericsson | Unknown | 19-Sep-2006 |
| eSoft, Inc. | Unknown | 19-Sep-2006 |
| Extreme Networks | Unknown | 19-Sep-2006 |
| F-PROT by FRISK Software International | Unknown | 19-Sep-2006 |
| F-Secure Corporation | Unknown | 19-Sep-2006 |
| F5 Networks, Inc. | Unknown | 19-Sep-2006 |
| Fedora Project | Unknown | 19-Sep-2006 |
| Finjan Software | Unknown | 19-Sep-2006 |
| Force10 Networks, Inc. | Unknown | 19-Sep-2006 |
| Fortinet, Inc. | Unknown | 19-Sep-2006 |
| Foundry Networks, Inc. | Unknown | 19-Sep-2006 |
| FreeBSD, Inc. | Vulnerable | 29-Sep-2006 |
| Fujitsu | Unknown | 7-Mar-2007 |
| Gentoo Linux | Unknown | 19-Sep-2006 |
| GFI Software, Inc. | Unknown | 19-Sep-2006 |
| Global Technology Associates | Not Vulnerable | 20-Sep-2006 |
| Hewlett-Packard Company | Unknown | 19-Sep-2006 |
| Hitachi | Not Vulnerable | 20-Sep-2006 |
| Hyperchip | Unknown | 19-Sep-2006 |
| IBM Corporation | Unknown | 19-Sep-2006 |
| IBM Corporation (zseries) | Unknown | 19-Sep-2006 |
| IBM eServer | Unknown | 19-Sep-2006 |
| Immunix Communications, Inc. | Unknown | 19-Sep-2006 |
| Ingrian Networks, Inc. | Unknown | 19-Sep-2006 |
| Intel Corporation | Unknown | 19-Sep-2006 |
| Internet Security Systems, Inc. | Unknown | 19-Sep-2006 |
| Intoto | Not Vulnerable | 20-Sep-2006 |
| IP Filter | Unknown | 19-Sep-2006 |
| Juniper Networks, Inc. | Unknown | 19-Sep-2006 |
| Linksys (A division of Cisco Systems) | Unknown | 19-Sep-2006 |
| Lucent Technologies | Unknown | 19-Sep-2006 |
| Luminous Networks | Unknown | 19-Sep-2006 |
| Mandriva, Inc. | Unknown | 19-Sep-2006 |
| MessageLabs | Unknown | 19-Sep-2006 |
| Microsoft Corporation | Unknown | 19-Sep-2006 |
| MontaVista Software, Inc. | Unknown | 19-Sep-2006 |
| Multinet (owned Process Software Corporation) | Unknown | 19-Sep-2006 |
| Multitech, Inc. | Unknown | 19-Sep-2006 |
| NEC Corporation | Unknown | 19-Sep-2006 |
| NetBSD | Unknown | 19-Sep-2006 |
| netfilter | Unknown | 19-Sep-2006 |
| Network Appliance, Inc. | Unknown | 19-Sep-2006 |
| NextHop Technologies, Inc. | Unknown | 19-Sep-2006 |
| Nokia | Unknown | 19-Sep-2006 |
| Nortel Networks, Inc. | Unknown | 19-Sep-2006 |
| Novell, Inc. | Unknown | 19-Sep-2006 |
| OpenBSD | Unknown | 19-Sep-2006 |
| Openwall GNU/*/Linux | Vulnerable | 20-Sep-2006 |
| Proland Software, Inc. | Unknown | 19-Sep-2006 |
| QNX, Software Systems, Inc. | Unknown | 19-Sep-2006 |
| Red Hat, Inc. | Vulnerable | 20-Sep-2006 |
| Redback Networks, Inc. | Unknown | 19-Sep-2006 |
| Riverstone Networks, Inc. | Unknown | 19-Sep-2006 |
| Secure Computing Network Security Division | Unknown | 19-Sep-2006 |
| Secureworx, Inc. | Unknown | 19-Sep-2006 |
| Silicon Graphics, Inc. | Unknown | 19-Sep-2006 |
| Slackware Linux Inc. | Vulnerable | 25-Sep-2006 |
| Sony Corporation | Unknown | 19-Sep-2006 |
| Sophos, Inc. | Unknown | 19-Sep-2006 |
| Stonesoft | Unknown | 19-Sep-2006 |
| Sun Microsystems, Inc. | Unknown | 19-Sep-2006 |
| SUSE Linux | Unknown | 19-Sep-2006 |
| Symantec, Inc. | Unknown | 19-Sep-2006 |
| The SCO Group | Unknown | 19-Sep-2006 |
| Trendmicro | Unknown | 19-Sep-2006 |
| Trustix Secure Linux | Unknown | 19-Sep-2006 |
| Turbolinux | Unknown | 19-Sep-2006 |
| Ubuntu | Vulnerable | 22-Sep-2006 |
| Unisys | Unknown | 19-Sep-2006 |
| Watchguard Technologies, Inc. | Unknown | 19-Sep-2006 |
| Wind River Systems, Inc. | Unknown | 19-Sep-2006 |
| ZyXEL | Unknown | 19-Sep-2006 |
References
http://www.gzip.org/
http://www.auscert.org.au/7179
Credit
Thanks to Tavis Ormandy, Google Security Team for reporting this issue.
This document was written by Ryan Giobbi.
Other Information
| Date Public | 06/19/2006 |
| Date First Published | 09/19/2006 04:42:35 PM |
| Date Last Updated | 07/27/2007 |
| CERT Advisory | |
| CVE-ID(s) | CVE-2006-4338 |
| NVD-ID(s) | CVE-2006-4338 |
| US-CERT Technical Alerts | |
| Metric | 0.31 |
| Document Revision | 37 |
If you have feedback, comments, or additional information about this vulnerability, please send us
email.
|
|
Get Adobe Reader