Bugtraq mailing list archives

Re: Format String Vulnerability in Tripwire

From: Ron Forrester <rjf () tripwire com>
Date: 4 Jun 2004 17:51:12 -0000

In-Reply-To: <20040603215236.7815.qmail () www securityfocus com>


One more quick note -- I think I had a brain freeze and gave Paul the wrong commerical version numbers. This 
vulnerability exists in all currently shipping TFS releases, which means <= 4.0.1.

Sorry I didn't catch this the first time.

Ron Forrester
Security Architect
Tripwire, Inc.

VERSIONS AFFECTED
-----------------
Tripwire commercial versions <= 2.4
Tripwire open source versions <= 2.3.1

Current thread:

Format String Vulnerability in Tripwire Paul Herman (Jun 03)
- <Possible follow-ups>
- Re: Format String Vulnerability in Tripwire Ron Forrester (Jun 03)
- Re: Format String Vulnerability in Tripwire Ron Forrester (Jun 04)
- Re: Format String Vulnerability in Tripwire Ron Forrester (Jun 05)