Vulnerability Development mailing list archives

Re: off by one exploits?

From: Dave Ahmad <da () securityfocus com>
Date: Thu, 7 Mar 2002 16:57:02 -0700 (MST)


For stack-based attacks, check these out:

"The Frame Pointer Overwrite" by klog <klog () promisc org>
http://phrack.org/phrack/55/P55-08

and

The post to Bugtraq by Olaf Kirch <okir () monad swb de>:

http://online.securityfocus.com/archive/1/10884

Dave Ahmad
SecurityFocus
www.securityfocus.com

On Thu, 7 Mar 2002, Christian Gresser wrote:


Hello list,

there was a post about OpenSSH and off by one
today on bugtraq.

Can someone please point me to some resources
how to exploit off by one bugs? Google only
gave me an explanation but no hints about how
to exploit this.

Thank you very much.

Chris.

Current thread:

off by one exploits? Christian Gresser (Mar 07)
- Re: off by one exploits? Dave Ahmad (Mar 07)
- RE: off by one exploits? John Adair (Mar 08)