Bugtraq mailing list archives
Re: Vulnerability in NCSA HTTPD 1.3
From: martikka () tele nokia fi (Hannu Martikka)
Date: Wed, 15 Feb 1995 02:50:56 +0200 (EET)
On Tue, 14 Feb 1995, Paul 'Shag' Walmsley wrote:
As Thomas implied, this particular problem can probably be fixed by
changing line 161 of util.c from
char tmp[MAX_STRING_LEN];
to
char tmp[HUGE_STRING_LEN];
in NCSA's source. We're running with the HUGE_STRING_LEN tmp now with no
(immediately apparent) bad side-effects (other than Thomas' hack not working
any more ;)
There are other similar places. At least one in http_log.c (111). At least you could overwrite that temp-variable easily, which caused core... - Goodi
Current thread:
- Fixing the NCSA HTTPD 1.3, (continued)
- Fixing the NCSA HTTPD 1.3 Thomas Lopatic (Feb 14)
- Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
- Re: Fixing the NCSA HTTPD 1.3 Rens Troost (Feb 15)
- Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
- For NCSA Http_1.05a Everett F Batey WA6CRE (Feb 15)
- Sendmail 8.6.9 Nathan Lawson (Feb 14)
- Re: Sendmail 8.6.9 Perry E. Metzger (Feb 14)
- Re: Sendmail 8.6.9 Tom Fitzgerald (Feb 14)
- Re: Sendmail 8.6.9 Perry E. Metzger (Feb 15)
- Fixing the NCSA HTTPD 1.3 Thomas Lopatic (Feb 14)
- Re: Vulnerability in NCSA HTTPD 1.3 Thomas Roessler (Feb 14)
- Re: Vulnerability in NCSA HTTPD 1.3 Hannu Martikka (Feb 14)