[15030] in bugtraq
Re: Qpopper 2.53 remote problem,
daemon@ATHENA.MIT.EDU (Jose Nazario)
Thu May 25 02:43:19 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.05.10005241300410.5839-100000@biocserver.BIOC.CWRU.Edu>
Date: Wed, 24 May 2000 13:02:52 -0400
Reply-To: Jose Nazario <jose@BIOCSERVER.BIOC.CWRU.EDU>
From: Jose Nazario <jose@BIOCSERVER.BIOC.CWRU.EDU>
X-To: Prizm <prizm@RESENTMENT.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200005231643.JAA16829@Rage.Resentment.org>
while investigating the qpopper 2.53 source lying around to see about this
fix, i noticed they note the source patches mentioned are incorrect. they
note:
[quote]
At lines 150 and 62 from pop_msg.c, replace:
- return (pop_msg (p,POP_SUCCESS, buffer));
to:
+ return (pop_msg (p,POP_SUCCESS, "%s", buffer));
[end quote]
when infact it's lines 62 and 152 in the source file pop_uidl.c that
contain these lines (god bless grep).
just a minor correction... damn, i gotta start looking for a better pop3d!
jose nazario jose@biochemistry.cwru.edu
PGP fingerprint: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
Public key available at http://biocserver.cwru.edu/~jose/pgp-key.asc
