[2944] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: identd hole?

daemon@ATHENA.MIT.EDU (der Mouse)
Tue Jul 16 16:50:33 1996

Date: 	Tue, 16 Jul 1996 12:41:08 -0400
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: der Mouse <mouse@Collatz.McRCIM.McGill.EDU>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>

> its possible that its an atoi() (or more properly strtol()) bug..
> Most people run identd as root, this means that if someone happens to
> overflow a buffer (which is easily done with atoi())

Um, how can you overflow a buffer with atoi() or strtol()?  Neither one
writes to any buffer anywhere; atoi() doesn't write anything but its
return value, and strtol() writes only the pointer and its return
value.

What am I missing?

                                        der Mouse

                            mouse@collatz.mcrcim.mcgill.edu
                    01 EE 31 F6 BB 0C 34 36  00 F3 7C 5A C1 A0 67 1D


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[2944] in bugtraq

Re: identd hole?

daemon@ATHENA.MIT.EDU (der Mouse)Tue Jul 16 16:50:33 1996

daemon@ATHENA.MIT.EDU (der Mouse)
Tue Jul 16 16:50:33 1996