|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[discuss] [Fwd: [Cooker] iwconfig security flow]
From: Pierre BETOUIN (info16
ifrance.com)
Date: Tue Nov 04 2003 - 06:28:38 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello,
I posted it on Cooker yesterday.
It could be a serious security flow if iwconfig was suided (it could be
even if it's not on a default install).
Pierre
-----Message suivi-----
> From: Pierre BETOUIN <info16ifrance.com>
> To: Cooker <cookerlinux-mandrake.com>
> Subject: [Cooker] iwconfig security flow
> Date: Mon, 03 Nov 2003 09:27:51 +0100
>
> Hello,
>
> iwconfig from wireless-tools package is vulnerable to a buffer overflow
> (for the interface argument) which may be easily exploited (cf
> http://www.securiteam.com/exploits/6Y00R1P8KY.html)
> Even if it's not suided, it could be exploited through a script or a
> frontend.
>
> Regards.
>
> Pierre
--
Pierre BETOUIN
GnuPG key :
lynx -dump perso.club-internet.fr/unsignedchr/GnupgKey.asc | gpg
--import
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQA/p5t2LNWSQpTZyyMRAv0HAJ9Nv1eNeChpVEdhRFH63XzoABb4mQCfdWvr
dYX9SAmY/1zTBSLPECVMsGQ=
=ZR7B
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]