|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: innd 2.2.2 remote buffer overflow
From: Forrest J. Cavalier III (mibsoft
EPIX.NET)Date: Tue Jun 06 2000 - 16:54:52 CDT
- Next message: Sendmail Security: "Sendmail Workaround for Linux Capabilities Bug"
- Previous message: root: "BRU Vulnerability"
- Maybe in reply to: Michal Zalewski: "innd 2.2.2 remote buffer overflow"
- Maybe reply: Forrest J. Cavalier III: "Re: innd 2.2.2 remote buffer overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Michal Zalewski <lcamtufTPI.PL> wrote:
> Newest innd 2.2.2, probably the most popular usenet news server (as well
> as previous versions) contain remotely exploitable, trivial on-stack
> buffer overflow in control articles handler.
INN 1.7.x and earlier is not affected by this. The vulnerable code appeared
in the 2.x branch.
Forrest J. Cavalier III, INN customization and consulting
http://www.mibsoftware.com/innsup.htm
Newsrate Usenet Server monitoring measures what you get.
http://www.mibsoftware.com/userkt/newsrate/
- Next message: Sendmail Security: "Sendmail Workaround for Linux Capabilities Bug"
- Previous message: root: "BRU Vulnerability"
- Maybe in reply to: Michal Zalewski: "innd 2.2.2 remote buffer overflow"
- Maybe reply: Forrest J. Cavalier III: "Re: innd 2.2.2 remote buffer overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]