Launchpad.net

CVE 2008-1552

The silc_pkcs1_decode function in the silccrypt library (silcpkcs1.c) in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.7, SILC Client before 1.1.4, and SILC Server before 1.1.2 allows remote attackers to execute arbitrary code via a crafted PKCS#1 message, which triggers an integer underflow, signedness error, and a buffer overflow. NOTE: the researcher describes this as an integer overflow, but CVE uses the "underflow" term in cases of wraparound from unsigned subtraction.

Related bugs and status

CVE-2008-1552 (Candidate) is related to these bugs:

Bug #215002: [silc-toolkit] [CVE-2008-1552] possible arbitrary code execution

Summary				In	Importance	Status
	215002	[silc-toolkit] [CVE-2008-1552] possible arbitrary code execution		silc-client (Ubuntu)	Undecided	Confirmed
	215002	[silc-toolkit] [CVE-2008-1552] possible arbitrary code execution		silc-server (Ubuntu)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://silcnet.org/gen...
CONFIRM: http://silcnet.org/gen...
CONFIRM: http://silcnet.org/gen...
BID: 28373
SECTRACK: 1019690
SECUNIA: 29463
SUSE: SUSE-SR:2008:008
SECUNIA: 29622
SREASON: 3795
GENTOO: GLSA-200804-27
SECUNIA: 29946
MANDRIVA: MDVSA-2008:158
FEDORA: FEDORA-2008-2616
FEDORA: FEDORA-2008-2641
SECUNIA: 29465
VUPEN: ADV-2008-0974
MISC: http://www.coresecurit...
XF: silc-silcpkcs1decode-b...
BUGTRAQ: 20080325 CORE-2007-121...