Vulnerability Development mailing list archives
Re: Apache 1.3
From: Yves Younan <yyounan () fort-knox org>
Date: Tue, 14 Sep 2004 23:29:42 +0200
On Tue, 2004-09-14 at 12:40, aley () consolbyexpotel com wrote:
Anybody know of any code/tools to exploit the Apache chunking integer overflow with Apache 1.3.9 on digital Unix? I'm looking for a bit of assistance with a pen-test.
I don't know of any specific tools. But, if Digital Unix does not implement it's memcpy in a similar way as BSD (i.e. it mimics the behavior of memmove), this may not be possible. - YY They that give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. - Benjamin Franklin
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Apache 1.3 aley (Sep 14)
- Re: Apache 1.3 Yves Younan (Sep 15)