Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: about zlib vulnerability - Microsoft products
From: Florian Weimer <Weimer () CERT Uni-Stuttgart DE>
Date: Sun, 17 Mar 2002 18:19:00 +0100

"Forrest J Cavalier III" <forrest () mibsoftware com> writes:

The following C program scans files for the cplens table (used for
inflate.)  

I expect the code below is portable.  It was tested on Windows.

It might run faster than the perl script posted earlier.  (I
suppose it risks more false positives too.)  

AFAIK, any "inflate" decompressor requires this table, so this program
detects such decompressors which store the table in a particular form,
not just zlib's implementation.

-- 
Florian Weimer                    Weimer () CERT Uni-Stuttgart DE
University of Stuttgart           http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT                          +49-711-685-5973/fax +49-711-685-5898


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault