Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 22 Sep 2000 10:30:16 -0400
From:      "Troy Settle" <troy@psknet.com>
To:        <igorr@crosswinds.net>, "FreeBSD Questions" <freebsd-questions@FreeBSD.ORG>
Subject:   RE: Default IMAP INBOX to $HOME/Mailbox
Message-ID:  <FCEELIAEIIECDGKKJLMIKEEICCAA.troy@psknet.com>
In-Reply-To: <20000922082633.B1004@linux.rainbow>
next in thread | previous in thread | raw e-mail | index | archive | help 

Igor,

Perhaps a potential overflow, but only if one has already compromised
libc or /etc/passwd, in which case, who cares about imap?  FWIW, UW IMAP
seems to be loaded with potential holes.  The current port warns against
using it on systems where you don't already allow for shell access.

I'm not a coder of any real talent, so take that for what it's worth.
The logic just doesn't seem to add up to this particular snippit of code
being a serious threat.

--
  Troy Settle
  Pulaski Networks
  540.994.4254


** -----Original Message-----
** From: owner-freebsd-questions@FreeBSD.ORG
** [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Igor Roboul
** Sent: Friday, September 22, 2000 12:27 AM
** To: FreeBSD Questions
** Subject: Re: Default IMAP INBOX to $HOME/Mailbox
**
**
** On Thu, Sep 21, 2000 at 07:54:48PM -0400, Troy Settle wrote:
** >    char tmp[MAILTMPLEN];
** >    if (!sysInbox) {		/* initialize if first time */
** > -    sprintf (tmp,"%s/%s",MAILSPOOL,myusername ());
** > +    sprintf (tmp,"%s/%s",myhomedir(),".mail");
** Do we have here potential buffer overflow?
** maybe we need
**   snprintf(tmp,MAILTMPLEN-1,"%s/%s",myhomedir(),".mail");
** ?
**
**
** --
** Igor Roboul, Unix System Administrator & Programmer @
** sanatorium "Raduga",
** Sochi, Russia
** http://www.brainbench.com/transcript.jsp?pid=304744
**
**
** To Unsubscribe: send mail to majordomo@FreeBSD.org
** with "unsubscribe freebsd-questions" in the body of the message
**
**



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?FCEELIAEIIECDGKKJLMIKEEICCAA.troy>