bobk <bobkat_private> writes: > Imagine what could happen if some program did a strcmp() on the following > name: > > rs.internic.net\0.xa.net > > where, of course, \0 is a null > > Interested readers may ponder what type of programs may be exploited with > this type of attack. Any .rhosts consumer. Xhost. Amanda (.amandahosts). Lpd (lpd.allow). What did I win? DES -- Dag-Erling Smorgrav - desat_private
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:48:04 PDT