Re: Format String Exploits

From: David Wagner (dawat_private)
Date: Thu Apr 12 2001 - 17:05:27 PDT

Next message: Dylan Wall: "Looking for SAMBA and SMB Vulnerabilities"

Previous message: Cedric Blancher: "Re: Alcatel ADSL Backdoor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Nelson Brito  wrote:
>No, no, NOOOOOOOOOOOOOO... your code is wrong, very very wrong, [...]

Uhh, that's the whole point!  He was trying to show it is possible
to have format string bugs in perl programs, too, and that is exactly
what he did.

Whether in C or Perl, format string bugs are bugs -- they are cases
where the programmer used the primitive incorrectly.  The point of the
post was to show that it is possible to use the primitive incorrectly
in Perl as well as in C.  Mere use of Perl is no silver bullet: You must
also write good, correct, defensive, robust code.

Next message: Dylan Wall: "Looking for SAMBA and SMB Vulnerabilities"
Previous message: Cedric Blancher: "Re: Alcatel ADSL Backdoor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 18:02:58 PDT