Bugtraq mailing list archives
Re: Remote Buffer Overflow Vulnerability in Sun RPC
From: Ricardo Quesada <core.lists.bugtraq () core-sdi com>
Date: Fri, 02 Aug 2002 16:28:49 -0300
Hi, As the advisory says: "...Additionalcommercial and open-source Unix operating systems use implementations of SunRPC, and may also be vulnerable..."...
it seems that glibc based systems (eg: most, if not all, linuxes) are also vulnerable to exactly the same xdr_array problem.
(take a look at glibc-2.2.5/sunrpc/xdr_array.c) riq. --- for a personal reply use: Ricardo Quesada <riq () corest com>
Current thread:
- Re: Remote Buffer Overflow Vulnerability in Sun RPC Ricardo Quesada (Aug 02)