Re: DEFCON 16 and Hacking OpenVMS *** V4.7 is fine ***

On Aug 18, 5:35 pm, gerr...@xxxxxxxxxxxxxxxx wrote:
VAX/VMS V5.5-2 (with all the ECOs found on ITRC) has the bug.

Interesting. That's something like 16 years that the bug has been
around and never been spotted?

I guess that shows that there aren't many people working on VMS that
spend their days keying in 511+ characters looking for buffer
overflows.

:-)
.

Relevant Pages

  • Bug analysis
    ... char *ReadTextFile ... the fgets function fills our buffer with a line or 119 ... The reallocation asks for "len" more characters, ... this bug can very well go completely undetected in many occasions giving ...
    (comp.lang.c)
  • [UNIX] wu-ftpd fb_realpath() Off-by-One Bug
    ... Wu-ftpd FTP server contains remotely exploitable off-by-one bug. ... characters while the size of the buffer is MAXPATHLEN characters only. ... Following FTP commands may be used to cause buffer overflow: ...
    (Securiteam)
  • RE: Update: Web browsers - a mini-farce (MSIE gives in)
    ... > Anyone who doesn't understand that a finite-size container cannot hold more ... there are buffer overflows in my own code that I dont recognize ... that bug is. ...
    (Bugtraq)
  • Bash-3.0 available for FTP
    ... This is the third major release of bash. ... Bash-3.0 provides a number of bug fixes and cleanups to the features ... pathname longer than PATH_MAX characters. ... with multibyte characters better. ...
    (comp.os.linux.announce)
  • Bash-3.0 available for FTP
    ... This is the third major release of bash. ... Bash-3.0 provides a number of bug fixes and cleanups to the features ... pathname longer than PATH_MAX characters. ... with multibyte characters better. ...
    (comp.unix.bsd.netbsd.misc)