Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Administrivia: Local Windows Overflows
From: Dave McKinney (dmsecurityfocus.com)
Date: Mon Apr 28 2003 - 17:49:07 CDT
We've let through a number of posts which regard local overflows on
Windows. While it is likely that these bugs do not have any security
implications, we don't entirely want to discourage discussion of the bugs.
It may be possible that a third-party script or other program may call the
buggy executable with user-supplied arguments, such as in the case of
something like nslookup.exe. These types of bugs could also be indicative
of a larger problem in a core .dll which could present remote attack
vectors and a potential for exploitation, like for example the
In any case, preference will be given to reports that include detailed
debugging output and possible attack scenarios.
key fingerprint = 494D 6B7D 4611 7A7A 5DBB 3B29 4D89 3A70 BF91 9DD7