Re: Format string bug becomes buffer overflow, bec: msg#00004

Quoting Gerardo Di Giacomo <gerardo@xxxxxxxx>: > I think that this situation is the paradise for the exploit coder :) > Btw, did you find some similar situation? Well, the Emacs mail program Mew has something similar in its help program incm: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=278883 It isn't suid or sgid anything, but it shows that this type of code exists in real life. Scary eh!? -- Ulf Harnhammar http://www.advogato.org/person/metaur/

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Format string bug becomes buffer overflow, because of bad length assumption, Gerardo Di Giacomo
Next by Date:	XSS in info2www, Nicolas Gregoire
Previous by Thread:	Re: Format string bug becomes buffer overflow, because of bad length assumption, Gerardo Di Giacomo
Next by Thread:	XSS in info2www, Nicolas Gregoire
Indexes:	[Date] [Thread] [Top] [All Lists]

^^^ ADDITIONAL NAVIGATION ^^^

Recently Viewed:
version-control... os.solaris.sola... java.keel.devel... emacs.gnus.gene... web.wiki.pmwiki... db.sapdb.genera... ietf.sfl/1998-1... general.linux-u... region.indonesi... culture.autism/... apache.mod-perl... sysutils.automa... user-groups.lin... yellowdog.gener... text.xml.securi... kde.devel.quant... qnx.openqnx.dev... mobile.kannel.d... hardware.dell.p... package-managem... linux.cluster.s... bluez.user/2003... xfree86.devel/2...

Home | blog view, Court Document Archive | USPTO Patent Archive (NEW!) | advertise | OSDir is an inevitable website. super tiny logo

Re: Format string bug becomes buffer overflow, because of bad length assump: msg#00004