Full Disclosure mailing list archives
!ADVISORY! + x Thu Mar 16 14:20:10 EST 2006 x + Integer Overflow in Dantz Retrospect
From: Barrie Dempster <barrie () reboot-robot net>
Date: Thu, 16 Mar 2006 19:20:18 +0000 (GMT)
!ADVISORY! + x Thu Mar 16 14:20:10 EST 2006 x + Integer Overflow in Dantz Retrospect +++++++++++++++++++++++++++++++++++++++++++++ o/ å BACKGROUND +++++++++++++++++++++++++++++++++++++++++++++ This product had no background. +++++++++++++++++++++++++++++++++++++++++++++ å \o DESCRIPTION +++++++++++++++++++++++++++++++++++++++++++++ Dantz Retrospect incorrectly parses integer data, and this can be used to execute arbitrary code. +++++++++++++++++++++++++++++++++++++++++++++ CONTACT +++++++++++++++++++++++++++++++++++++++++++++ Barrie Dempster barrie () reboot-robot net CISSP CSFA GREM SSP-MPA GIPS GHTQ GWAS CAP _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- !ADVISORY! + x Thu Mar 16 14:20:10 EST 2006 x + Integer Overflow in Dantz Retrospect Barrie Dempster (Mar 16)