Re: Mysterious CVE-2008-568 (Solaris)

[Cédric Picard <cpicard () openmailbox org>]

If you are looking for informations about the bug behind CVE-2008-568
it is described in length by Tobias Klein (the discoverer) in the
third chapter of his book "A Bug Hunter's Diary".

On Thu, Apr 30, 2015 at 12:58:46PM -0500, Mark Felder wrote:
> It appears to me that CVE-2008-568 is rather hard to find information
> about, outside the public exploit [1] and advisory [2] issued by the
> team that found it. It's unknown to CVE sites probably because it's only
> referenced by 3 digits instead of 4. The patch README [3] doesn't seem
> to reference this issue at all. Does anyone know if it has a different
> CVE number or what happened here?
>
> [1] https://www.exploit-db.com/exploits/15962/
> [2] http://www.trapkit.de/advisories/TKADV2008-015.txt
> [3] https://getupdates.oracle.com/readme/README.138888-01
>
>
> _______________________________________________
> Sent through the Full Disclosure mailing list
> https://nmap.org/mailman/listinfo/fulldisclosure
> Web Archives & RSS: http://seclists.org/fulldisclosure/

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/