[34541] in bugtraq
Re: ZA Security Hole
daemon@ATHENA.MIT.EDU (Samps)
Fri Apr 16 14:45:21 2004
Message-ID: <407F2709.6050006@redjocks.com>
Date: Fri, 16 Apr 2004 09:51:29 +0930
From: Samps <samps@redjocks.com>
MIME-Version: 1.0
To: bugtraq@securityfocus.com
In-Reply-To: <000d01c42261$552cfbc0$0100a8c0@BlueBox>
Content-Type: text/plain; charset=ISO-8859-2; format=flowed
Content-Transfer-Encoding: 8bit
Damjan Kreft wrote:
> Hello!
>
> I think, I discover some kind of security hole in ZoneAlaram - any version.
> The problem is hidding in E-mail Protection. Because I'm form Slovenia (not
> Slovakia), our alphabet does have some letters with roof (c - è, s - ¹, z -
> ¾). And when the name of e-mail attachment contain any of these three
> letters, it don't go to the qurarantine (if the attachment do have right
> extension of course).
>
> Greets, Damjan
I played around a bit to find out whether my own computer (with
ZoneAlarm Pro) was vulnerable and, accidentally, found a similar
behaviour from my ISPs mailserver, apparently being Exim 4.24.
When attaching any 'normally' named .EXE, my email is returned to me by
Exim, with a note saying: "This kind of attachment is not good for
you.....".
If I rename the same .EXE to, say, (c).exe, it gets delivered and
ZoneAlarm lets it in without quarantining it.
Two bugs for the price of one!
cheers
Samps
