Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: NSCA HTTPD (for Windows) bug.
From: njs3 () DOC IC AC UK (Niall Smart)
Date: Fri, 8 May 1998 18:14:35 +0100


On May 8,  1:33am, Renos wrote:
} Subject: NSCA HTTPD (for Windows) bug.

Since the server is not for commercial use the bug doesn't seem to be
serious. A fix would be to re-define MAX_STRING_LEN to a much bigger
number. As far as I know the Server Administrator cannot re-define
MAX_STRING_LEN.

Increasing MAX_STRING_LEN is *not* a fix; it is necessary to add
bounds checking code to the parser to ensure that the buffer cannot
be overflowed.

Niall



  By Date           By Thread  

Current thread:
  • Re: NSCA HTTPD (for Windows) bug. Niall Smart (May 08)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault