[<prev] [next>] [day] [month] [year] [list]
Message-ID: <4908A10A.6060301@libero.it>
Date: Wed, 29 Oct 2008 18:44:42 +0100
From: fabio <ctrlaltca@...ero.it>
To: lqwrm@...oscience.org
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com
Subject: KVIrc version 3.4.0 Virgo remote format string
proof of concept exploit.
Regarding:
http://www.zeroscience.org/codes.html
It seems like this is the old
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2951 , found
by Stefan Cornelius from Secunia Research and patched in kvirc >=
3.2.6_pre20070714 . Tested y users on 3.4.0 and 3.4.2, can't reproduce.
What's the point in this?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists