openser110-sms.txt

openser110-sms.txt: Posted Dec 29, 2006; Authored by sapheal; A memory corruption condition has been discovered in the OpenSER SMS handling module. Versions 1.1.0 and below are affected.; tags | advisory; SHA-256 | 484303104de315ea5d9fd85799b9664894e8389db532bc70a191c30073f4389e; Download | Favorite | View

openser110-sms.txt

Synopsis:  SMS handling OpenSER remote code executing 
Product:   OpenSER
Version:   <=1.1.0



Issue:
======

A critical security vulnerability has been found in OpenSER SMS
handling module. The vulnerable function should read the SMS 
from the SIM-memory.


Details:
========
int fetchsms(struct modem *mdm, int sim, char* pdu)

The usage of this fuction might lead to memory corruption
conditions. Due to memory corruption conditions remote 
code execution is possible. It happens when "beginning"
is copied to functions argument PDU (char*).


Affected Versions
=================

OpenSER <= 1.1.0

Solution
=========

Proper boundary checking.


Exploitation
============

Exploitation might be conducted by preparing a specially 
crafted SMS message.

Top Authors In Last 30 Days

Red Hat 272 files
Ubuntu 56 files
Debian 19 files
LiquidWorm 18 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Chokri Hammedi 3 files
Alter Prime 3 files
Valentin Lobstein 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,937)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,337)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,979)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

openser110-sms.txt

openser110-sms.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

openser110-sms.txt

Share This

openser110-sms.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems