Re: NII Advisory - Buffer Overflow in Analogx Proxy
From: Godwin Stewart (gstewart_at_spamcop.net)
Date: 05/27/03
- Previous message: security_at_sco.com: "Security Update: [CSSA-2003-SCO.9] OpenServer 5.0.5 OpenServer 5.0.6 : Buffer overflows and other security vulnerabilities in Squid"
- In reply to: K. K. Mookhey: "NII Advisory - Buffer Overflow in Analogx Proxy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 27 May 2003 23:18:47 +0200 To: "K. K. Mookhey" <cto@nii.co.in>
And Thus Spake "K. K. Mookhey" <cto@nii.co.in> (on Mon, 26 May 2003 19:41:38
+0530):
> ===============================================
> Buffer Overflow In Analogx Proxy 4.13
> Vendor: Analogx
> Versions affected: Proxy 4.13
> Date: 26th May 2003
> Type of Vulnerability: Remotely Exploitable Buffer Overflow
> Severity: High
> By: Network Intelligence India www.nii.co.in
> ===============================================
Unfortunately, the buffer overflow is not the only problem with AnalogX.
The default installation is "everything open", and a very large proportion
of the spam sent flying around the world is sent through open AnalogX
proxies.
http://tinyurl.com/csut (redirects to news.admin.net-abuse.email archives)
-- G. Stewart -- gstewart@bonivet.net -- gstewart@spamcop.net Registered Linux user #284683 --------------------------------------------------------------- In the 60's people took acid to make the world weird. Now the world is weird and people take Prozac to make it normal.
- Previous message: security_at_sco.com: "Security Update: [CSSA-2003-SCO.9] OpenServer 5.0.5 OpenServer 5.0.6 : Buffer overflows and other security vulnerabilities in Squid"
- In reply to: K. K. Mookhey: "NII Advisory - Buffer Overflow in Analogx Proxy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
