Bugtraq mailing list archives

Re: [Linux] glibc 2.1.x / wu-ftpd <=2.5 / BeroFTPD / lynx / vlock / mc / glibc 2.0.x

From: daw () CS BERKELEY EDU (David Wagner)
Date: Wed, 1 Sep 1999 21:48:27 -0700


In article <14282.6738.523996.809083 () floh privat circular de>,
Norbert Warmuth  <nwarmuth () PRIVAT CIRCULAR DE> wrote:

An off-by-one error, hardly to exploit especially since the value written
is always '\0'.


Relying on that to protect you may not be prudent.  See
  http://www.geog.ubc.ca/snag/bugtraq/msg03213.html
for an example of an off-by-one error which only allowed to write a '\0'
yet was exploited in the field (!).

Current thread:

Re: [Linux] glibc 2.1.x / wu-ftpd <=2.5 / BeroFTPD / lynx / vlock / mc / glibc 2.0.x Norbert Warmuth (Aug 29)
- Re: [Linux] glibc 2.1.x / wu-ftpd <=2.5 / BeroFTPD / lynx / vlock / mc / glibc 2.0.x Norbert Warmuth (Sep 05)
- <Possible follow-ups>
- Re: [Linux] glibc 2.1.x / wu-ftpd <=2.5 / BeroFTPD / lynx / vlock / mc / glibc 2.0.x David Wagner (Sep 01)