> If I disable stack execution in Solaris 6 and 8, am I still vulnerable to the SNMP vulnerability. Cert makes a comment to this but it isn't clear. Either it stops stack smashing or it doesn't. Any information would be appreciated. > > Thank you in advance, > > Charles It stops some stack smashing, but not all. In Linux for example even with Solar Designer's OpenWall kernel patch, ImmunixOS addons and the like it's still possible to smash the stack. It's like any security, you'll be a bit more secure, but never 100%. Kurt Seifried, kurtat_private A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://seifried.org/security/ http://www.idefense.com/digest.html ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Fri Feb 15 2002 - 13:46:23 PST