|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: format bugs, in addition to the wuftpd bug
From: Daniel Jacobowitz (drow
false.org)Date: Tue Jun 27 2000 - 23:38:23 CDT
- Next message: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Previous message: Jonathan Leto: "Re: static analysis"
- In reply to: Chris Evans: "Re: format bugs, in addition to the wuftpd bug"
- Next in thread: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Reply: Daniel Jacobowitz: "Re: format bugs, in addition to the wuftpd bug"
- Reply: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, Jun 28, 2000 at 01:38:03AM +0100, Chris Evans wrote:
> rpc.statd:
>
> statd/log.c: syslog(level, buffer)
*SIGH*
I can confirm that this is remotely exploitable; I should have it
working fully in a moment. I'll try to get a fix off tonight - unless
you'd rather, Olaf?
Dan
/--------------------------------\ /--------------------------------\
| Daniel Jacobowitz |__| SCS Class of 2002 |
| Debian GNU/Linux Developer __ Carnegie Mellon University |
| dandebian.org | | dmj+andrew.cmu.edu |
\--------------------------------/ \--------------------------------/
- Next message: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Previous message: Jonathan Leto: "Re: static analysis"
- In reply to: Chris Evans: "Re: format bugs, in addition to the wuftpd bug"
- Next in thread: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Reply: Daniel Jacobowitz: "Re: format bugs, in addition to the wuftpd bug"
- Reply: Olaf Kirch: "Re: format bugs, in addition to the wuftpd bug"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]