Info

Disclosure

Feb 15, 2009

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Feb 14, 2009

Description

F*EX (Frams' Fast File EXchange) contains a flaw that may allow a local denial of service. The issue is triggered when handling loops created by a symlink in the dop subsystem. This may allow a local attacker to cause a loss of availability for the program.

Classification

Location: Local Access Required
Attack Type: Denial of Service, Other
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Public
Disclosure: Vendor Verified
OSVDB: Authentication Required

Solution

Upgrade to version 20081127 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

framstag

F*EX (Frams' Fast File EXchange)

Unspecified

References

Related OSVDB ID: 84056 84084 84085
Vendor URL: http://fex.rus.uni-stuttgart.de/
Vendor Specific News/Changelog Entry: http://fex.rus.uni-stuttgart.de/fex.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/84082