[39435] in Cypherpunks
Re: NYT on Netscape Crack
daemon@ATHENA.MIT.EDU (Adam Shostack)
Tue Sep 19 09:51:06 1995
To: sameer <sameer@c2.org>
Cc: cypherpunks@toad.com
In-Reply-To: Your message of "Tue, 19 Sep 1995 00:13:26 PDT."
<199509190713.AAA01128@infinity.c2.org>
Date: Tue, 19 Sep 1995 09:49:27 -0400
From: Adam Shostack <adam@homeport.org>
| Buffer overflow seems like a much greater concern when dealing
| with a server. Particularly one which is supposedly "secure", and
| accessing "secured" documents. Even with the server running as
| 'nobody' if someone can implement buffer overflow to get access to
| documents they shouldn't then that would count as a pretty significant
| hack.
Don't forget system(), which was a major source of holes in the NCSA server.
Also, CGI scripts, especially those that run under perl or sh, would be a good
place to look for holes. Don't forget to see what happens when you put
semi-colons in the data field of various fields, such as mailto:'s.
Adam
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
