Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability

---

• From: "KJK::Hyperion" <hackbunny@xxxxxxxxxx>
• Date: Wed, 28 Nov 2007 13:16:34 +0100

---

Tonnerre Lombard ha scritto:

Microsoft FTP Client Multiple Bufferoverflow
Vulnerability

Isn't the FTP client compiled with stack overflow protection?

If so, how is that supposed to help?

By terminating the program before the payload is executed

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

---

• Follow-Ups:
  • Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Tonnerre Lombard

• References:
  • [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Rajesh Sethumadhavan
  • Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: KJK::Hyperion
  • Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Tonnerre Lombard

• Prev by Date: Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Next by Date: Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Previous by thread: Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Next by thread: Re: [Full-disclosure] Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > Full-Disclosure  > 2007-11