Full Disclosure mailing list archives

Re: 0trace - traceroute on established connections

From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Sun, 14 Jan 2007 22:16:42 +0300

Dear Robert Swiecki,

--Sunday, January 14, 2007, 2:49:58 AM, you wrote to bugtraq () securityfocus com:

RS> User-Agent: &*^ VDjh;
RS>         olsMoasdasdzilla2%$(ls)2=++/-2121%&^#%^@&37.0 (X1230#$(ls)`ls`)
RS>         asd%^*&%^dasdnhy/ Mnenhy/0.7.4.0

Hmmmm. It doesn't seems like attempt to exploit something, so it's seems
like  you have just discovered format string or uninitialized memory bug
somewhere.... With at least information leak as an impact.

-- 
~/ZARAZA
http://www.security.nnov.ru/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

0trace - traceroute on established connections Michal Zalewski (Jan 06)
- Re: 0trace - traceroute on established connections Michal Zalewski (Jan 06)
- Re: 0trace - traceroute on established connections Matthew Flaschen (Jan 08)
  - Re: 0trace - traceroute on established connections Brendan Dolan-Gavitt (Jan 08)
- Re: 0trace - traceroute on established connections Alessandro Dellavedova (Jan 09)
  - Re: 0trace - traceroute on established connections Jon Oberheide (Jan 09)
  - Re: 0trace - traceroute on established connections Michal Zalewski (Jan 09)
- Re: [DCC SPAM] 0trace - traceroute on established connections Lance James (Jan 09)
- Re: 0trace - traceroute on established connections Robert Święcki (Jan 13)
  - Re: 0trace - traceroute on established connections 3APA3A (Jan 14)
  - Re: 0trace - traceroute on established connections Jon Oberheide (Jan 24)