[3275] in bugtraq
Re: Vulnerability in the Xt library
daemon@ATHENA.MIT.EDU (Stefan `Sec` Zehl)
Sun Aug 25 20:03:10 1996
Date: Mon, 26 Aug 1996 01:07:45 +0200
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: "Stefan `Sec` Zehl" <zehl@informatik.tu-muenchen.de>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <Pine.LNX.3.91.960824015150.22386A-100000@underground.org> from
"Aleph One" at Aug 24, 96 02:14:24 am
Aleph One wrote:
>
> There exists at least one vulnerability in the Xt library caused by a buffer
> overrun that allows arbitrary code to be executed.
I can confirm this for FreeBSD-Current 2.2
but i can NOT confirm this for FreeBSD 2.1-Release...
after all this is a pretty severe BUG, and the only way (i can see) to patch
it is to get a new libXt... :(
CU,
Sec
--
Email: sec@leo.org or sec@matrix.muc.de WWW: http://www.blafasel.de/~sec/
Phone: 089/3618013 or 0177/2340515 IRC: Sec @ #blafasel
Hi! I'm a .signature virus! Add me to your .signature and join in the fun!
