Re: Two plugin changes + a question

From: Renaud Deraison (deraisonat_private)
Date: Wed Sep 17 2003 - 10:48:55 PDT

Next message: Paul Johnston: "Minor tweaks"

Previous message: James Davis: "Re: Trying to find a bug in sendmail_redirection.nasl"
In reply to: Paul Johnston: "Two plugin changes + a question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 17, 2003 at 11:27:45AM +0100, Paul Johnston wrote:
> Hi,
> 
> First, a question regarding:
> 11391  BSD ftpd setproctitle() format string
> 11495  tanned format string vulnerability
> These are listed as ACT_ATTACK, but looking at the source I am a little 
> worried they could crash servers. Can anyone confirm these are safe to 
> run against vulnerable hosts?

You're correct. I think 11495 was not too bad, because tanned is
unix-only (afaik), however I moved the two plugins to
ACT_DESTRUCTIVE_ATTACK.

> And two plugin changes:
> 
> 11579 - Added an exit(0) line. This is important, as previously the 
> script would run the attack even in safe mode.
> 11591 - Fixed bug where it always gave its security warning on port 1.

Commited, thank you.

				-- Renaud

Next message: Paul Johnston: "Minor tweaks"
Previous message: James Davis: "Re: Trying to find a bug in sendmail_redirection.nasl"
In reply to: Paul Johnston: "Two plugin changes + a question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Sep 17 2003 - 10:49:20 PDT