Bugtraq mailing list archives
Re: What happened to the syslog bug ?
From: joe () Navigist Com (Joe Rhett)
Date: Tue, 25 Jun 1996 10:55:41 -0700
In August last year 8LGM released an advisory warning about a syslog vulnerability. Something to do with a buffer overflow and passing commands to a remote site. The advisory said that exploit would not be released yet, in order to give time to vendors to issue patches. Now I understand that some vendors are pretty slow in acknowledging security problems but it sounds like they had enough time by now. Anyone considering posting details on this full disclosure list ?
Sun, HP, IBM, SGI, and SCO had patches available within 2 weeks. I've had the patches installed for over 3 months on our systems ... what other kind of "response" are you looking for?
Current thread:
- SunOS 5.5 mailtool - stupid .forward symlink tricks Neil Readwin (May 30)
- Re: SunOS 5.5 mailtool - stupid .forward symlink tricks martinh () mailhost emap co uk (Jun 17)
- Re: SunOS 5.5 mailtool - stupid .forward symlink tricks Casper Dik (Jun 24)
- Re: SunOS 5.5 mailtool - stupid .forward symlink tricks martinh () mailhost emap co uk (Jun 25)
- What happened to the syslog bug ? Gadaix Emmanuel NTC/Bangkok (Jun 25)
- Re: What happened to the syslog bug ? Gunnar Ingvi Thorisson (Jun 25)
- Re: What happened to the syslog bug ? Joe Rhett (Jun 25)
- Re: What happened to the syslog bug ? Mike Kienenberger (Jun 25)
- Re: What happened to the syslog bug ? martinh () mailhost emap co uk (Jun 26)
- Re: What happened to the syslog bug ? Alan Brown (Jun 26)
- Re: SunOS 5.5 mailtool - stupid .forward symlink tricks Casper Dik (Jun 24)
- Re: SunOS 5.5 mailtool - stupid .forward symlink tricks martinh () mailhost emap co uk (Jun 17)