Bugtraq mailing list archives

Re: about zlib vulnerability - Microsoft products

From: Florian Weimer <Weimer () CERT Uni-Stuttgart DE>
Date: Sun, 17 Mar 2002 18:19:00 +0100

"Forrest J Cavalier III" <forrest () mibsoftware com> writes:

The following C program scans files for the cplens table (used for
inflate.)  

I expect the code below is portable.  It was tested on Windows.

It might run faster than the perl script posted earlier.  (I
suppose it risks more false positives too.)


AFAIK, any "inflate" decompressor requires this table, so this program
detects such decompressors which store the table in a particular form,
not just zlib's implementation.

-- 
Florian Weimer                    Weimer () CERT Uni-Stuttgart DE
University of Stuttgart           http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT                          +49-711-685-5973/fax +49-711-685-5898

Current thread:

Re: about zlib vulnerability - Microsoft products Forrest J Cavalier III (Mar 17)
- Re: about zlib vulnerability - Microsoft products Florian Weimer (Mar 18)