Date: Mon, 02 Nov 1998 18:01:23 -0700 From: Brett Glass <brett@lariat.org> To: andrew@squiz.co.nz, Warner Losh <imp@village.org> Cc: bow <bow@bow.net>, FreeBSD-security@FreeBSD.ORG Subject: Re: [rootshell] Security Bulletin #25 (fwd) Message-ID: <4.1.19981102180015.046c7490@127.0.0.1> In-Reply-To: <Pine.BSF.4.01.9811031239510.8161-100000@aniwa.sky> References: <199811022237.PAA16222@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
At 12:47 PM 11/3/98 +1300, Andrew McNaughton wrote: >I had a brief look over the ssh code some months ago. I didn't find >anything exploitable, but I did find things that made me uncomfortable, >like the logging routine that uses vsprintf (or something similarly >lacking in bounds checking) and expected all the places it was checked to >do the bounds checking. Watch out for logging routines. When some folks got into our system via the Qpopper exploit, the long messages sent by QPopper crashed syslogd. This might be an avenue for a hack. --Brett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.1.19981102180015.046c7490>