Full Disclosure mailing list archives
Re: AFFLIB(TM): Time-of-Check-Time-of-Use File Race
From: Tim <tmorgan () vsecurity com>
Date: Sun, 29 Apr 2007 11:32:56 -0400
This specific vulnerability is not exploitable due to the referenced code not being executed. I appologize for the misinformation. Updates to each vulnerability can be found here: http://www.vsecurity.com/bulletins/advisories/2007/afflib-toctou.txt http://www.vsecurity.com/bulletins/advisories/2007/afflib-overflows.txt http://www.vsecurity.com/bulletins/advisories/2007/afflib-shellinject.txt http://www.vsecurity.com/bulletins/advisories/2007/afflib-fmtstr.txt We are currently not aware of any additional exploitable flaws in AFFLIB. tim _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- AFFLIB(TM): Time-of-Check-Time-of-Use File Race VSR Advisories (Apr 27)
- Re: AFFLIB(TM): Time-of-Check-Time-of-Use File Race Tim (Apr 29)