oss-sec mailing list archives
Re: exploitability of off-by-one in motion webserver
From: "Steven M. Christey" <coley () linus mitre org>
Date: Tue, 10 Jun 2008 20:37:57 -0400 (EDT)
On Tue, 10 Jun 2008, Nico Golde wrote:
Hi, in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484572 I reported an off-by-one programming error in motion: 1950 static int read_client(int client_socket, void *userdata, char *auth)
Use CVE-2008-2654 - Steve
Current thread:
- exploitability of off-by-one in motion webserver Nico Golde (Jun 10)
- Re: exploitability of off-by-one in motion webserver Solar Designer (Jun 10)
- Re: exploitability of off-by-one in motion webserver Nico Golde (Jun 10)
- Re: exploitability of off-by-one in motion webserver Steven M. Christey (Jun 10)
- Re: exploitability of off-by-one in motion webserver Solar Designer (Jun 10)