Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-209

from [Stefan Kanthak] Network Security [Permanent Link]
Subject: Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)
Date: Sun, 21 Oct 2007 14:18:43 +0200 
Anonymous <farion42@yahoo.de> wrote Saturday, October 20, 2007 11:55 AM:


As a workaround, one could try to manually replace zlib32.dll in a Windows
GSView 4.8 installation with the current zlib1.dll version 1.2.3.

"Applications linking statically with or using their own copy of zlib 1.1.3
or earlier must be recompiled to avoid the security problem described here.
Otherwise it is sufficient to upgrade the shared zlib library then restart
all applications using it."[1]

[1] http://www.zlib.net/apps.html


http://www.zlib.net/DLL_FAQ.txt (according to the HTTP response last
modified on Sunday, 24 Oct 2004 20:53:16 GMT) states that zlib1.dll 1.2.x
is linked against MSVCRT.DLL.

The vulnerable ZLIB32.DLL distributed with GSview 4.8 is but not linked
against MSVCRT.DLL. Although its version/copyright strings equal the ones
of the "official" zlib1.dll from zlib.net, I'm not sure who built the
ZLIB32.DLL in question. It doesn't completely look like the "official"
zlib1.dll.

Unfortunately the maintainer of GSview choose not to reply to my bug
report which included a question about the source of the ZLIB32.DLL.

As long as I cant be sure that the replacement zlib1.dll from zlib.net
is fully compatible to the ZLIB32.DLL distributed with GSview 4.8 I wont
give any advice to exchange it.

BTW: replacement of ZLIB32.DLL wont close all the vulnerabilities in
GSview 4.8. The maintainer was informed about some more (trivial to spot)
vulnerabilities together with the here published one.

Stefan Kanthak

BTW: your "reply" is missing a "References:" (or "In-Reply-To:") header!
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] Redirecting 404 error pages?, crazy frog crazy frog
Next by Date:  PacSec 2007 Agenda (Tokyo 11-29/30), Dragos Ruiu
Previous by Thread:  Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096), farion42
Next by Thread:  Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096), Stefan Kanthak
Indexes:  [Date] [Thread] [Top] [All Lists]