Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Pine: .procmailrc rule against integer overflow

From: zen-parse <zen-parse () gmx net>
Date: Thu, 11 Sep 2003 16:52:56 +1200 (NZST)
A procmail rule something like:

===CUT-BEGIN-RULE===
:0B:
* [a-zA-Z-]+\*[0-9]+\*=
$HOME/pine.int-overflow.attacks.do.not.open.with.pine.
====CUT-END-RULE====

should make exploitation of the integer overflow a little harder.

-- zen-parse

-- 
-------------------------------------------------------------------------
1) If this message was posted to a public forum by zen-parse () gmx net, it 
may be redistributed without modification. 
2) In any other case the contents of this message is confidential and not 
to be distributed in any form without express permission from the author.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: