[3021] in bugtraq
Re: [linux-security] Linux NetKit-B update.
daemon@ATHENA.MIT.EDU (Joseph S. D. Yao)
Fri Jul 26 12:01:37 1996
Date: Thu, 25 Jul 1996 22:56:29 -0400
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: "Joseph S. D. Yao" <jsdy@cais.cais.com>
X-To: bugtraq@crimelab.com, dholland@hcs.HARVARD.EDU,
linux-security@tarsier.cv.nrao.edu
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
> 6. Buffer overflow in ping mentioned yesterday, but it's not on the
> stack and consequently probably not exploitable. Patch: use snprintf.
Stack vs. heap is irrelevant. The V6 'login' overrun bug was in data
space, rather than on the stack, and it gave a very nice way to log in
as root.
No, I don't remember the exact character string to enter ... ;-)
Joe Yao jsdy@cais.com - Joseph S. D. Yao
