|
|
Re: QPopper 4.0.4 buffer overflow: msg#00419security.bugtraq
> Affected versions 4.0.3 and 4.0.4. default install. > Servers, not processing user`s configuration file > (~/.qpopper-options) are insensible to this bug. Our testing has shown that you must use the -u parameter to be susceptible to this vulnerability. If you don't use the -u parameter for qpopper this file is not accessed. You can use the -d parameter to view the debug output to verify this. Mike UNIX Systems Administrator at Wake Forest University. ====================================================================== J. Mike Rollins rollins@xxxxxxx Wake Forest University http://www.wfu.edu/~rollins Winston-Salem, NC work: (336) 758-1938 ====================================================================== |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Reading local files in Netscape 6 and Mozilla (GM#001-NS): 00419, GreyMagic Software |
|---|---|
| Next by Date: | Re: Slrnpull Buffer Overflow (-d parameter): 00419, Bill Nottingham |
| Previous by Thread: | Re: List of extended sprocs that are vulnerable? FW: Microsoft Security Bulletin MS02-020i: 00419, Bronek Kozicki |
| Next by Thread: | Howto exploit a remote format bug automatically: 00419, Frédéric Raynal |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |