Full Disclosure mailing list archives

Evidence of a ISC being hacked?

From: VX Dude <vxdude2003 () yahoo com>
Date: Thu, 24 Jun 2004 08:27:11 -0700 (PDT)

http://www.kb.cert.org/vuls/id/654390

Apparently one of the new DHCP vulnerabilities stems
from the following code found in a header file.

#define vsnprintf(buf, size, fmt, list) vsprintf (buf,
fmt, list)

Why would any coder replace a more secure function
with a less secure function?  Personally I don't see
any reason except to backdoor the software.  If so,
then is this evidence that ISC has been hacked and
there backdoored?  Are they keeping the incident
quiet?

Yeah I'm paranoid, but someone has to be ^_*

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Evidence of a ISC being hacked? VX Dude (Jun 24)
- Re: Evidence of a ISC being hacked? Valdis . Kletnieks (Jun 24)
  - Re: Evidence of a ISC being hacked? VX Dude (Jun 24)
    - Re: Evidence of a ISC being hacked? Valdis . Kletnieks (Jun 24)
    - Re: [FD] Evidence of a ISC being hacked? Thomas Binder (Jun 24)
    - Re: Evidence of a ISC being hacked? Eric Paynter (Jun 24)
    - New malware to infect IIS and from there jump to clients Peter Kruse (Jun 24)
    - Re: New malware to infect IIS and from there jump to clients Nick FitzGerald (Jun 24)
    - SV: New malware to infect IIS and from there jump to clients Peter Kruse (Jun 24)
    - Re: SV: New malware to infect IIS and from there jump to clients Duncan Hill (Jun 25)
    - Re: SV: New malware to infect IIS and from there jump to clients Nasir Ghaznavi (Jun 25)

(Thread continues...)