Re: Buffer overflows in Minicom 1.80.1

From: Alan Brown (alanat_private)
Date: Sat Aug 29 1998 - 18:57:10 PDT

Next message: Brandon Reynolds: "Re: buffer overflow in nslookup?"

Previous message: Crispin Cowan: "Re: StackGuard-protected Linux and a New StackGuard Compiler"
Maybe in reply to: Eduardo Navarro: "Buffer overflows in Minicom 1.80.1"
Next in thread: M.C.Mar: "Re: Buffer overflows in Minicom 1.80.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 29 Aug 1998, Eduardo Navarro wrote:

> I have found some buffer overflows in Minicom 1.80.1 which comes setuid
> root with Slackware 3.5.  I known that were discussed some overflows in
> other versions of minicom ( no setuid root) but i think it's "new" and
> more dangerous.

Another workaround not mentioned is to create a minicom group and
only allow trusted users to use the program.

You _do_ trust people with minicom access not to run up a huge
international phone bill, right?

AB

Next message: Brandon Reynolds: "Re: buffer overflow in nslookup?"
Previous message: Crispin Cowan: "Re: StackGuard-protected Linux and a New StackGuard Compiler"
Maybe in reply to: Eduardo Navarro: "Buffer overflows in Minicom 1.80.1"
Next in thread: M.C.Mar: "Re: Buffer overflows in Minicom 1.80.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:14:04 PDT