Joined: 25 Feb 2003
Location: Essen, Germany
|Posted: Tue Nov 02, 2004 6:38 pm Post subject: [ GLSA 200411-06 ] MIME-tools: Virus detection evasion
|Gentoo Linux Security Advisory
Title: MIME-tools: Virus detection evasion (GLSA 200411-06)
Date: November 02, 2004
Updated: May 22, 2006
MIME-tools doesn't handle empty MIME boundaries correctly. This may prevent some virus-scanning programs which use MIME-tools from detecting certain viruses.
MIME-tools is a Perl module containing functions to handle MIME attachments.
Vulnerable: < 5.415
Unaffected: >= 5.415
Architectures: All supported architectures
MIME-tools doesn't correctly parse attachment boundaries with an empty name (boundary="").
An attacker could send a carefully crafted email and evade detection on some email virus-scanning programs using MIME-tools for attachment decoding.
There is no known workaround at this time.
All MIME-tools users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-perl/MIME-tools-5.415"
Last edited by GLSA on Tue May 23, 2006 4:18 am; edited 2 times in total