Dailydave mailing list archives

Re: [fuzzing] Coverage and a recent paper by L. Suto

From: Nicolas RUFF <nruff () security-labs org>
Date: Sat, 27 Oct 2007 09:25:47 +0200

Using the following perl script two buffer overflows are detected:
cat vuln.c | perl -ne '/rnd\[i\]/ and print "Buffer overflow!\n"'
This post does have a point. Discuss among yourselves.


Is this vendor bashing, maybe ? ;)

BTW, since you wrote your own static analyzer [*], I guess you could
share insights on the matter.

[*] http://gcc.vulncheck.org/

Regards,
- Nicolas RUFF
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Coverage and a recent paper by L. Suto Dave Aitel (Oct 15)
- Re: Coverage and a recent paper by L. Suto matthew wollenweber (Oct 15)
  - Re: Coverage and a recent paper by L. Suto Stephen John Smoogen (Oct 16)
  - Re: Coverage and a recent paper by L. Suto Charles Miller (Oct 16)
    - Message not available
    - Message not available
    - Re: [fuzzing] Coverage and a recent paper by L. Suto matthew wollenweber (Oct 17)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto JFV (Oct 18)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Nicolas RUFF (Oct 25)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Alexander Sotirov (Oct 26)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Lance M. Havok (Oct 26)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Nicolas RUFF (Oct 27)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Lance M. Havok (Oct 27)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Alexander Sotirov (Oct 28)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto Andre Gironda (Oct 29)
    - Re: [fuzzing] Coverage and a recent paper by L. Suto J.M. Seitz (Oct 29)
- Re: Coverage and a recent paper by L. Suto Adriel Desautels (Oct 29)
  - Re: Coverage and a recent paper by L. Suto J.M. Seitz (Oct 29)