lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <7366.1196374789@turing-police.cc.vt.edu>
Date: Thu, 29 Nov 2007 17:19:49 -0500
From: Valdis.Kletnieks@...edu
To: 3APA3A <3APA3A@...URITY.NNOV.RU>
Cc: Rajesh Sethumadhavan <rajesh.sethumadhavan@...oo.com>,
	bugtraq@...urityfocus.com
Subject: Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability

On Thu, 29 Nov 2007 14:46:06 +0300, 3APA3A said:
>  In  order to exploit this vulnerability you need to force victim to run
>  attacker-supplied   BAT   file.   It's   like   forcing   user  to  run
>  attacker-supplied  .sh script under Unix.

And oddly enough, the *very next mail* from Bugtraq said:

> FreeBSD-SA-07:10.gtar                                       Security Advisory
>                                                           The FreeBSD Project

> Topic:          gtar directory traversal vulnerability
...
> III. Impact

> An attacker who can convince an user to extract a specially crafted
> archive can overwrite arbitrary files with the permissions of the user
> running gtar.  If that user is root, the attacker can overwrite any
> file on the system.

Apparently, somebody at FreeBSD thinks "can be exploited if you trick the
user into doing something" is a valid attack vector.



Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ