Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

!ADVISORY! + x Thu Mar 16 14:20:10 EST 2006 x + Integer Overflow in Dantz Retrospect

From: Barrie Dempster <barrie () reboot-robot net>
Date: Thu, 16 Mar 2006 19:20:18 +0000 (GMT)



!ADVISORY! + x Thu Mar 16 14:20:10 EST 2006 x + Integer Overflow in Dantz Retrospect




+++++++++++++++++++++++++++++++++++++++++++++
o/ 卍 BACKGROUND
+++++++++++++++++++++++++++++++++++++++++++++
This product had no background.
+++++++++++++++++++++++++++++++++++++++++++++
卍 \o DESCRIPTION
+++++++++++++++++++++++++++++++++++++++++++++
Dantz Retrospect incorrectly parses integer data, and this can be used to execute arbitrary code.



+++++++++++++++++++++++++++++++++++++++++++++
CONTACT
+++++++++++++++++++++++++++++++++++++++++++++
Barrie Dempster barrie () reboot-robot net

CISSP CSFA GREM SSP-MPA GIPS GHTQ GWAS CAP 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: