Bugtraq mailing list archives
Historical Bugtraq Question
From: ah () SECURITYFOCUS COM (Alfred Huger)
Date: Thu, 30 Sep 1999 10:40:09 -0700
Hey Folks, I am doing a little research on Bugtraq, it's history and the impact it's had on the community. I have a question for some of the listers here who have been onboard for a while. So far as I can tell, the first publicly released X86 buffer overflow w/ source code was the splitvt(1) exploit posted on Sun Dec 03 1995 as "Avalon Release". http://www.securityfocus.com/templates/archive.pike?list=1&date=1995-11-29&thread=Pine.LNX.3.91.951203225127.524A-100000 () crimson cadvision com It's my assertion that this code launched the buffer overflow into a commonly used exploit technique. In any event, I am looking for information refuting the 'first out' claim. Keep in mind I am not referring to anything other than X86 overflows (although I do not believe sparc eggs became public till after the splitvt code). Any input would be appreciated, I will post to the list when I have finished the research and compiled it into a paper for public consumption. Please reply directly to me.
Current thread:
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy], (continued)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Alan Cox (Sep 28)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Mike Iglesias (Sep 28)
- Team Asylum: iHTML Merchant Vulnerabilities Team Asylum (Sep 28)
- Team Asylum: Yahoo! Messenger DoS Team Asylum (Sep 28)
- Sun's TTSESSION Vulnerability Bauer, Rich (Sep 29)
- Re: Sun's TTSESSION Vulnerability Richard L. Goerwitz (Sep 29)
- WWWBoard Elias Levy (Sep 29)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Sylvain Robitaille (Sep 29)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Dan Astoorian (Sep 29)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Sylvain Robitaille (Sep 29)
- Historical Bugtraq Question Alfred Huger (Sep 30)
- Microsoft Security Bulletin (MS99-041) Aleph One (Sep 30)
- mini-sql Buffer Overflow gregory duchemin (Sep 30)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Eric Griffis (Sep 28)