Full Disclosure mailing list archives

!ADVISORY! | +Thu Mar 16 14:09:18 EST 2006+ | Heap Overflow in Dantz Retrospect

From: Robert Perriero <ssgsa () mail montclair edu>
Date: Thu, 16 Mar 2006 19:09:22 +0000 (GMT)




!ADVISORY! | +Thu Mar 16 14:09:18 EST 2006+ | Heap Overflow in Dantz Retrospect




o/ å Background
There was no identified background commentary regarding this problem in question.
å \o Description
It is possible to make Dantz Retrospect crash or run arbitrary code by the use of malformed input.

o/ å History
20-2-2006 o/ Vendor Reply.
16-3-2006 o/ Public Disclosure.
å \o Workaround
There was no workarounds on the problem at hand.
Appendix A Vendor Information
http://www.dantz.com

Appendix B References
RFC 755

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

!ADVISORY! | +Thu Mar 16 14:09:18 EST 2006+ | Heap Overflow in Dantz Retrospect Robert Perriero (Mar 16)