Linux/Unix e-mail flaw leaves system open to attack

Matthew Broersma (Techworld.com)
26 August, 2005 08:27
Comments

Two serious security flaws have turned up in software widely distributed with Linux and Unix. The bugs affect Elm (Electronic Mail for Unix), a venerable e-mail client still used by many Linux and Unix sysadmins, and Mplayer, a cross-platform movie player that is one of the most popular of its kind on Linux.

The Elm flaw involves a boundary error when the client reads an e-mail's "Expires" header. A specially crafted e-mail could exploit the bug to cause a buffer overflow and execute malicious code on a system, according to security researchers.

Adding to the flaw's potential impact, exploit code has begun circulating on the Internet, according to FrSIRT, the French Security Incident Response Team, which published sample code on its site.

The flaw affects Elm version 2.5 PL7 and earlier, and has been fixed in a new update, version 2.5 PL8. A patched version is available via Elm-related websites, or from operating system vendors such as Red Hat.

Elm is one of the oldest email clients for Unix-like operating systems (including Linux), having gained popularity in the early 1990s. The application is a predecessor of such command-line e-mail clients as Mutt and Pine. Its users tend to be experienced Unix hands -- the kind who run large, important systems, according to industry observers.

Red Hat, FrSIRT and advisory aggregator Secunia all gave the Elm flaw a highly critical rating.

The bug in Mplayer is the latest media-player bug to plague sysadmins. Widely used desktop applications such as media players are more difficult to patch than server-side bugs, because there are many times more copies in use, often without the knowledge of IT managers.

The flaw affects Mplayer versions 1.0pre7 and earlier, and hasn't been patched, according to an advisory from FrSIRT.

The flaw allows attackers to execute malicious code via a specially crafted media file, according to Sven Tantau, who discovered the flaw. The exploit is triggered by a specially crafted "strf" value in an audio header, and results in a buffer overflow, Tantau said in an advisory.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: Red Hat, VIA

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Whitepapers

Agile: Transforming small-team thinking into big business results

Agile is fast becoming the development method of choice for many Australian businesses. This whitepaper discusses key trends and best practices for scaling agile within complex organisations.

Featured Download

CDex

CDex can extract the data directly (digital) from an Audio CD, which is generally called a CD Ripper or a CDDA utility.

Zones

Most Popular Whitepapers

Process-Driven Master Data Management for Dummies

We wrote this book to introduce you to the subject of processdriven MDM. It’s a big topic, one that far outstrips the ability of a brief book to cover. However, our hope is that by reading this book you will gain a fundamental understanding of processdriven MDM, how it works, and what it takes to make it a success in your organisation.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management

Latest Jobs

CCSAP PM ConsultantNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTSenior Citrix EngineerNSW
FTProduct Manager Strategist - Enterprise ApplicationsNSW
FTChange Management ProfessionalsNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTTechnical Services Engineer - ShoreTel/MitelVIC
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTSenior Citrix EngineerNSW
CCAvaya Engineer - ERS 8600 4.1NSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
FTQM Trainer and ConsultantNSW
CCOBIEE ConsultantWA
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTSAP Basis ConsultantACT
FTSAP Basis ConsultantNSW
CCSAP FICO ConsultantNT
FTiPhone App DeveloperNSW
FTiPhone App DeveloperNSW
FTiPhone App DeveloperNSW
FTIT Service Desk EngineerNSW
FTIT Service Desk EngineerNSW
FTiPhone Developer DeveloperNSW
CCPC Relocation Technicians - Multiple Roles availableSA

Market Place

Linux/Unix e-mail flaw leaves system open to attack

Comments

Post new comment

NBN ISS could pose capacity constraints

Coalition NBN better or worse?

Bredolab botnet author sentenced to 4 years in prison in Armenia

Alternatives to Raspberry Pi you can get right now

Which tablet should I buy? iPad 2 vs Sony Tablet S

NBN ISS could pose capacity constraints

NBN service plans won't cost consumers more: Conroy

Microsoft at a loss over Event Viewer scam

Stallman: If you want freedom don't follow Linus Torvalds

Conroy turns the attack to Hockey

Coalition NBN better or worse?

Agile: Transforming small-team thinking into big business results

Oracle Enterprise Gateway

Magic Quadrant for Enterprise Disk-Based Backup/Recovery

Risk management: ensuring the security of your hosted information

CDex

Avaya Air Cover Zone

Application Lifecycle Management

HP Converged Storage Zone

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Process-Driven Master Data Management for Dummies

Business Intelligence Best Practices for Dashboard Design

Learning To Compete: IT’s Next Transformation

Seven Steps to Effective Data Governance

Guidance for Calculation of Efficiency (PUE) in Data Centers

Computerworld newsletter

Don't have an account?

Linux/Unix e-mail flaw leaves system open to attack

Comments

Post new comment

Computerworld newsletter