Bugtraq mailing list archives
Re: [linux-security] Linux NetKit-B update.
From: jsdy () cais cais com (Joseph S. D. Yao)
Date: Thu, 25 Jul 1996 22:56:29 -0400
6. Buffer overflow in ping mentioned yesterday, but it's not on the stack and consequently probably not exploitable. Patch: use snprintf.
Stack vs. heap is irrelevant. The V6 'login' overrun bug was in data space, rather than on the stack, and it gave a very nice way to log in as root. No, I don't remember the exact character string to enter ... ;-) Joe Yao jsdy () cais com - Joseph S. D. Yao
Current thread:
- Re: [linux-security] Linux NetKit-B update. Joseph S. D. Yao (Jul 25)