Re: buffer overflow vulnerability in netscape 3.0 to 4.5

From: Steven M. Bellovin (smbat_private)
Date: Fri Oct 23 1998 - 17:23:18 PDT

Next message: Marcelo Roccasalva: "Re: SVGATextMode 1.8 /tmp race"

Previous message: Roger Harrison ?: "Re: License Manager's lockfiles (Solaris 2.5.1)"
Maybe in reply to: Paul Boehm: "buffer overflow vulnerability in netscape 3.0 to 4.5"
Next in thread: Michael Tomaino: "Re: buffer overflow vulnerability in netscape 3.0 to 4.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In message <19981023193130.B31216at_private>, Paul Boehm writes:
>Today news.com reported about a buffer overflow vulnerability in netscape3-4.5
>found by Dan Brumleve <nothingat_private>.
>
>Read the whole story on http://www.news.com/News/Item/0,4,27856,00.html?owv
>
>a sample exploit for linux netscape has been published by Dan Brumleve
>on his webpage: http://www.shout.net/~nothing/buffer-overflow-1/index.html
>
>Netscape is working on a patch.

I also have indications that under BSD/OS 4.0, Communicator 4.5 does not
disable Javascript, no matter what the setting.  Can anyone confirm that
on other platforms?  (Not surprisingly, I immediately deleted 4.5...)

Next message: Marcelo Roccasalva: "Re: SVGATextMode 1.8 /tmp race"
Previous message: Roger Harrison ?: "Re: License Manager's lockfiles (Solaris 2.5.1)"
Maybe in reply to: Paul Boehm: "buffer overflow vulnerability in netscape 3.0 to 4.5"
Next in thread: Michael Tomaino: "Re: buffer overflow vulnerability in netscape 3.0 to 4.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:20:58 PDT