Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Advisory 2006-03-11 Heap Overflow in ISC INN

From: Paul Kurczaba <seclists () securinews com>
Date: Sat, 11 Mar 2006 22:59:00 -0800
Advisory 2006-03-11 Heap Overflow in ISC INN

I. BACKGROUND

Advisory marked for immediate release.

II. DESCRIPTION

It is possible to make ISC INN crash or run arbitrary code by the use of malformed input.

III. HISTORY

This advisory has no history.

IV. WORKAROUND

There are no known workarounds.

V. VENDOR RESPONSE

ISC INN has not commented on this issue.

VI. CVE INFORMATION

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2006-660971 to this issue.

APPENDIX A. - Vendor Information
http://www.isc.org/index.pl?/sw/inn/
APPENDIX B. - References
NONE

CONTACT:
*Paul Kurczaba bantown () spam la
*1-888-LOL-WHAT
*CISSP GSAE CCE CEH CSFA GREM SSP-CNSA SSP-MPA GIPS GHTQ GWAS


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: