Bugtraq mailing list archives
Re: A bug in Elm
From: rosebud () CYCLONE STANFORD EDU (Larry Schwimmer)
Date: Sun, 4 May 1997 17:22:53 -0700
You (fflush) write:
I ran into an Elm feature the other day which allows you to overwrite anyone's files
Upgrade your software; it is not current.
The only version I tried this on is 2.4 PL24 (Linux), which I think is the latest one.
2.4 PL25 came out in December, 1995. It may be found at: ftp://ftp.myxa.com/pub/elm/elm2.4.tar.Z 2.4 PL25 is still the current release. 2.5 is in beta test. The CERT vendor bulletins for this bug may be found at: ftp://info.cert.org/pub/cert_bulletins/VB-95:10.elm ftp://info.cert.org/pub/cert_bulletins/VB-95:10a.elm yours, Larry Schwimmer schwim () cyclone stanford edu
Current thread:
- Re: Buffer Overflows: A Summary Bill Trost (May 01)
- Re: Buffer Overflows: A Summary Tommy Marcus McGuire (May 02)
- Re: Buffer Overflows: A Summary Gene Spafford (May 02)
- Windows NT 4.0 SAM hotfix Aleph One (May 02)
- Re: Buffer Overflows: A Summary Lamont Granquist (May 03)
- Solaris lpNet & temp files (exploit) Chris Sheldon (May 03)
- Re: Solaris lpNet & temp files (exploit) Casper Dik (May 07)
- A bug in Elm fflush (May 04)
- Re: A bug in Elm Larry Schwimmer (May 04)
- Hole in the KDE desktop Alan Cox (May 05)
- A vulnerability in Lynx (all versions) fflush (May 05)
- Re: A vulnerability in Lynx (all versions) Theo de Raadt (May 05)
- SGI Security Advisory 19970101-02-PX - csetup Program SGI Security Coordinator (May 05)
- Re: Buffer Overflows: A Summary Tommy Marcus McGuire (May 02)
- Re: Buffer Overflows: A Summary Thomas H. Ptacek (May 02)
- Comments on NT user list exploit webroot (May 05)
- Re: Buffer Overflows: A Summary Adam Shostack (May 05)
- Re: Buffer Overflows: A Summary Eilon Gishri (May 06)
- Administratrivia Aleph One (May 06)
- SGI Security Advisory 19970501-01-A - Vulnerability in webdist.cgi SGI Security Coordinator (May 06)