Title: KTools Remote Buffer Overflow Vulnerability
Severity: HIGH
Description:
The ktools library provides various text-mode user-interface controls. Various applications including centericq, orpheus, motor, and groan use the library.
The ktools library is prone to a remote buffer-overflow vulnerability. This issue presents itself because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.
Reports indicate that, in one instance, this issue arises when the library is used with centericq and a string containing 1024 or more characters is supplied as a part of a contact's details. This may be exploited through the 'description' field of an RSS feed.
A buffer-overflow condition affecting the 'VGETSTRING' function of 'kkstrtext.h' arises and leads to memory corruption. An attacker may execute arbitrary code with the privileges of the application and gain unauthorized remote access.
Version 0.3 (and prior) of ktools is vulnerable to this issue. Note that other applications using this library may be affected as well.
Affected Products:
- Centericq Centericq 4.20.0
- Centericq Centericq 4.21.0
- Centericq Centericq 4.5.1
- Debian Linux 3.0.0
- Debian Linux 3.0.0 alpha
- Debian Linux 3.0.0 arm
- Debian Linux 3.0.0 hppa
- Debian Linux 3.0.0 ia-32
- Debian Linux 3.0.0 ia-64
- Debian Linux 3.0.0 m68k
- Debian Linux 3.0.0 mips
- Debian Linux 3.0.0 mipsel
- Debian Linux 3.0.0 ppc
- Debian Linux 3.0.0 s/390
- Debian Linux 3.0.0 sparc
- Debian Linux 3.1.0
- Debian Linux 3.1.0 alpha
- Debian Linux 3.1.0 amd64
- Debian Linux 3.1.0 arm
- Debian Linux 3.1.0 hppa
- Debian Linux 3.1.0 ia-32
- Debian Linux 3.1.0 ia-64
- Debian Linux 3.1.0 m68k
- Debian Linux 3.1.0 mips
- Debian Linux 3.1.0 mipsel
- Debian Linux 3.1.0 ppc
- Debian Linux 3.1.0 s/390
- Debian Linux 3.1.0 sparc
- Gentoo Linux
- Motor Motor 3.2.2
- Motor Motor 3.4.0
- ktools ktools 0.3.0
References:
- Centericq: Centerciq Homepage
- Motor: Motor
- ktools: Product Page