Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 28 Jun 1998 10:59:00 +0300
From:      "Vadim V. Chepkov" <vvc@kharkiv.net>
To:        freebsd-security@FreeBSD.ORG
Subject:   Re: (FWD) QPOPPER REMOTE ROOT EXPLOIT
Message-ID:  <3595F7C4.650979D9@kharkiv.net>

next in thread | raw e-mail | index | archive | help
Jordan K. Hubbard wrote:
> 
> > THere seems to be yet another similar buffer overflow
> > in pop_log.c
> 
> Fixed.  Please cvsup the latest ports collection and make sure
> that ports/mail/popper is updated - all the new patches are in
> ports/mail/popper/patches/patch-ag.
> 

Hello!

I did make that

Updating collection ports-all/cvs
 Edit ports/mail/popper/patches/patch-ag
  Add delta 1.4 98.06.27.20.47.27 ache
  Add delta 1.5 98.06.27.21.47.34 jkh


And now popper crush immediately

# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost
Escape character is '^]'.
Connection closed by foreign host.
 
/kernel: pid 9696 (popper), uid 0: exited on signal 11 (core dumped)


Kind regards,
Vadim V. Chepkov
Kharkiv Online ISP
------------------------------------------------------
Vadim V. Chepkov, Kharkiv State Polytechnic University
21 Frunze Str.,     Kharkiv,     Ukraine,       310002
Tel: +380 572 400279              Fax: +380 572 400592
e-mail: vvc@kharkiv.net    http://www.kharkiv.net/~vvc
------------------------------------------------------

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3595F7C4.650979D9>