Full Disclosure mailing list archives

Re: [USN-45-1] nasm vulnerability

From: Devdas Bhagat <devdas () dvb homelinux org>
Date: Fri, 24 Dec 2004 19:41:49 +0530

On 22/12/04 14:26 -0600, Todd Towles wrote:

So now, I just need to trick a user into running a malicious source file
that I assembed and sent him, this makes it much harder.


<snip nasm vulnerability details>

You need to publish an exploit for nasm and claim it to be the exploit
for something else. This trick has been used here a few times.

Devdas Bhagat
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

[USN-45-1] nasm vulnerability Martin Pitt (Dec 22)
- <Possible follow-ups>
- RE: [USN-45-1] nasm vulnerability Todd Towles (Dec 22)
  - Re: [USN-45-1] nasm vulnerability Martin Pitt (Dec 24)
  - Re: [USN-45-1] nasm vulnerability Devdas Bhagat (Dec 24)