oss-sec mailing list archives
Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites
From: Hamid Zamani <me () hamidx9 ir>
Date: Tue, 20 Aug 2013 02:33:54 +0430
On 08/20/2013 12:48 AM, Kurt Seifried wrote:
Ok so we got a total of three kinds of vulns, so same version/researcher I'm CVE MERGEing them: Buffer Overflows please use CVE-2013-4256 Heap Overflow please use CVE-2013-4257 Format String please use CVE-2013-4258 As for "Possible Race Condition and symlink attack:" can we confirm it's a security issue?
Thank you. Actually not, i just mentioned it according to fixes and announcing. it's just about some special OSs not all of them. -- Regards, Hamid Zamani (aka HAMIDx9) Ashiyane Digital Security Team
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- CVE Request : NAS v1.9.3 multiple Vulnerabilites Hamid Zamani (Aug 15)
- Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites Kurt Seifried (Aug 19)
- Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites Hamid Zamani (Aug 19)
- Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites Florian Weimer (Sep 09)
- Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites Hamid Zamani (Sep 09)
- Re: CVE Request : NAS v1.9.3 multiple Vulnerabilites Kurt Seifried (Aug 19)