• IDP Daily Update #1312
  posted: 11/18/08
  
• NSM Daily Update #1312
  posted: 11/18/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1312
  posted: 11/18/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 11/18/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 11/17/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: WMTV Buffer Overflow Vulnerability

Severity: HIGH

Description:

wmtv is a video4linux TV player for windowmaker. It runs on Linux and Unix variants using windowmaker. It ships with Debian GNU/Linux 2.2.

A number of buffer overflows exist in affected versions of wmtv. This may provide an opportunity for a local attacker to execute arbitrary attacked-supplied instructions.

This issue is the result of insufficient bounds checking of externally-supplied data. To successfully exploit this vulnerability, the local attacker must be able to supply some type of input that will overrun the buffer, causing locations in memory to be overwritten with arbitrary attacker-supplied instructions in the process.

wmtv is installed setuid root by default, and affected versions require these privileges to run. Successful exploitation of this issue will allow the local attacker to gain root privileges on a host running vulnerable versions of wmtv.

However, it should be noted that it has not been proven whether these issues are exploitable.

This appears to be a problem with the version of wmtp that ships with Debian/GNU Linux due to the permissions that are required to run vulnerable versions of the software.

Affected Products:

• wliang wmtv 0.6.5