Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: Re: What happened to the syslog bug ?

Re: What happened to the syslog bug ?

From: Joe Rhett <joe_at_Navigist.Com>
Date: Tue, 25 Jun 1996 10:55:41 -0700

> In August last year 8LGM released an advisory warning about a syslog
> vulnerability. Something to do with a buffer overflow and passing commands
> to a remote site. The advisory said that exploit would not be released yet,
> in order to give time to vendors to issue patches. Now I understand that
> some vendors are pretty slow in acknowledging security problems but it
> sounds like they had enough time by now.
> Anyone considering posting details on this full disclosure list ?

Sun, HP, IBM, SGI, and SCO had patches available within 2 weeks. I've
had the patches installed for over 3 months on our systems ... what
other kind of "response" are you looking for?
Received on Jun 25 1996

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos