lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 08 Dec 2009 21:22:09 +0100
From: Don HO <don.h@...e.fr>
To: xsecurity@...driva.com, bugtraq@...urityfocus.com
Cc: Thell Fowler <tbfowler4@...il.com>,
	jens Lorenz <jens.lorenz@....de>,
	Chris Covier <quasar850@...iffmail.com>
Subject: Notepad++ buffer overflow issue

Hi,

I am the project leader and the maintainer of Notepad++.
Regarding your report, Notepad++ has a vulnerable issue due to a buffer 
overflow
issue (Bugtraq ID:  36426).
Several tests with Notepad++ v5.4.5 and the Notepad++ v5.6.1 (latest 
version)
are processed under XP SP3 and Vista SP1.

However, the buffer overflow issue (crash) can not be reproduced at all 
with the
provided exploit :
http://www.securityfocus.com/data/vulnerabilities/exploits/36426.c


Could you check again this vunerable issue?

Thank you in advance
Don

Powered by blists - more mailing lists