Re: New bugs discovered!

From: Larry W. Cashdollar (lwcat_private)
Date: Sun Nov 18 2001 - 19:13:31 PST

Next message: Philip Wagenaar: "Ie6 password input problem"

Previous message: Yaroslav Klyukin: "Re: New bugs discovered!"
In reply to: vuln-dev: "New bugs discovered!"
Next in thread: Syzop: "Re: New bugs discovered!"
Next in thread: Chris D. Sloan: "Re: New bugs discovered!"
Reply: Syzop: "Re: New bugs discovered!"
Reply: Mariusz Mazur: "Re[2]: New bugs discovered!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I think we are going to find a new era of buffer overflows, not in
the daemons themselves but the user utilities that they call.  Overflows
in non-setuid binaries might be worth cataloging if these binaries are
being called by applications that are listening to a socket.

This might be a good time to be thinking about what relies on what.  

On Sun, 18 Nov 2001, vuln-dev wrote:

> GOBBLES security is happy to announce the discovery of multiple bugs in 
> /bin/gzip, which can be exploited remotely with a bit of creativity.  
> Attached is our advisory on the matter. 
>

Next message: Philip Wagenaar: "Ie6 password input problem"
Previous message: Yaroslav Klyukin: "Re: New bugs discovered!"
In reply to: vuln-dev: "New bugs discovered!"
Next in thread: Syzop: "Re: New bugs discovered!"
Next in thread: Chris D. Sloan: "Re: New bugs discovered!"
Reply: Syzop: "Re: New bugs discovered!"
Reply: Mariusz Mazur: "Re[2]: New bugs discovered!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Nov 18 2001 - 21:39:10 PST