Re: buffer overflow in msgchk

From: Aleph One (aleph1at_private)
Date: Fri May 15 1998 - 09:34:08 PDT

Next message: Nathan Neulinger: "Re: security holes, notification protocols, and a clarification"

Previous message: Rop Gonggrijp: "Toshiba notebooks BIOS password backdoor"
Maybe in reply to: Jorge Hurtado Rojo: "buffer overflow in msgchk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 13 May 1998, Erwin J. van Eijk wrote:

> This vulnerability is not present when using mh-6.8.4-6 in RH
> 5. msgchk ends with
>
> msgchk: argument AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAA (2000 times) too long

This vulnerability has already been discussed here back in January.
The message by Cesar Tascon Alvarez <tasconat_private> that sparked
the discussion is available at
http://www.netspace.org/cgi-bin/wa?A2=ind9801C&L=bugtraq&D=&H=&T=&O=&F=&P=3374

mh-6.8.4-6 is not the version shipped with RedHat 5.0. Thats the fixed
version available in their errata page at
http://www.redhat.com/support/docs/rhl/rh50-errata-general.html#mh

> Grtz
> EJ

Aleph One / aleph1at_private
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61  8C 39 EA 47 A8 6A B8 01

Next message: Nathan Neulinger: "Re: security holes, notification protocols, and a clarification"
Previous message: Rop Gonggrijp: "Toshiba notebooks BIOS password backdoor"
Maybe in reply to: Jorge Hurtado Rojo: "buffer overflow in msgchk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:53:37 PDT