Re: suid scotty (ntping) overflow (fwd)

From: Larry W. Cashdollar (lwcat_private)
Date: Fri Jun 15 2001 - 06:32:41 PDT

Next message: Dom De Vitto: "RE: Software authentication (was RE: Gibson (was Crack Office XP))"

Previous message: bill_weissat_private: "Re: Software authentication (was RE: Gibson (was Crack Office XP))"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---------- Forwarded message ----------
Date: Fri, 15 Jun 2001 12:31:23 +0200
From: Juergen Schoenwaelder <schoenwat_private-bs.de>
To: lwcat_private
Subject: Re: suid scotty (ntping) overflow (fwd)

>>>>> Larry W Cashdollar writes:

Larry> Sir, I am subscribed to the vuln-dev mailing list at
Larry> securityfocus, a member has found a buffer overflow in
Larry> ntping.c. I have dug deeper and written an exploit and made a
Larry> recommendation for a fix.  Please see below.

I have fixed this problem in scotty 2.1.11 which I just released a few
minutes ago.

/js

-- 
Juergen Schoenwaelder      Technical University Braunschweig
<schoenwat_private-bs.de>  Dept. Operating Systems & Computer Networks
Phone: +49 531 391 3289    Bueltenweg 74/75, 38106 Braunschweig, Germany
Fax:   +49 531 391 5936    <URL:http://www.ibr.cs.tu-bs.de/~schoenw/>

Next message: Dom De Vitto: "RE: Software authentication (was RE: Gibson (was Crack Office XP))"
Previous message: bill_weissat_private: "Re: Software authentication (was RE: Gibson (was Crack Office XP))"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jun 15 2001 - 14:05:09 PDT