Re: patch for qpopper remote exploit bug

From: David DeSimone (foxat_private)
Date: Tue Jun 30 1998 - 15:06:45 PDT

Next message: Aleph One: "Qualcomm's qpopper 2.5"

Previous message: twiztah: "SECURITY: too many new packages"
Next in thread: der Mouse: "Re: patch for qpopper remote exploit bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Kev <klmitchat_private> wrote:
>
> A friend of mine has a rather clever implementation using pipe;
> http://web.mit.edu/svalente/src/snprintf/snprintf.c

A typical pipe buffer is 1K to 4K in size.  If this code attempts to
fprintf() more data into the pipe than will fit, the code will block
because there is no one reading on the other end of the pipe.

--
David DeSimone   | "The doctrine of human equality reposes on this:
foxat_private   |  that there is no man really clever who has not
Hewlett-Packard  |  found that he is stupid." -- Gilbert K. Chesterson
Convex Division  |    PGP: 5B 47 34 9F 3B 9A B0 0D  AB A6 15 F1 BB BE 8C 44

Next message: Aleph One: "Qualcomm's qpopper 2.5"
Previous message: twiztah: "SECURITY: too many new packages"
Next in thread: der Mouse: "Re: patch for qpopper remote exploit bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:01:16 PDT