| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <805442413.20070713183201@SECURITY.NNOV.RU> Date: Fri, 13 Jul 2007 18:32:01 +0400 From: 3APA3A <3APA3A@...URITY.NNOV.RU> To: edi.strosar@...nostne-novice.com Cc: full-disclosure@...ts.grok.org.uk Subject: Re: PIRS2007 local buffer overflow vulnerability Dear edi.strosar@...nostne-novice.com, Please explain why is this "vulnerability" and not "just the bug". --Friday, July 13, 2007, 5:26:17 PM, you wrote to full-disclosure@...ts.grok.org.uk: esvnc> TeamIntell discovered local buffer overflow vulnerability esvnc> in PIRS2007 (data collection of companies and active esvnc> business subjects in Slovenia). Please see the attached esvnc> security advisory for details. esvnc> Vendor has released a patch that solves this issue. esvnc> Download link: esvnc> http://www.pirs.si/slo/index.php?dep_id=29&help_id=60 esvnc> Edi Strosar esvnc> (TeamIntell) -- ~/ZARAZA http://securityvulns.com/ Ęîăäŕ ďňč÷ęŕ ďîăčáŕĺň îň îáćîđńňâŕ, ĺĺ íŕíčçűâŕţň íŕ âĺđňĺë. (Ëĺě) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists