<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow

Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow

From: Werner Van Belle <werner_at_yellowcouch.org>
Date: Wed, 1 Aug 2007 21:46:28 +0200

> How would you name it? "Winamp 5.35 (Infinite) M3U File Inclusion Stack
> Overflow Exception"?

I actually agree with the original poster. A stack overflow in a client side
program such as winamp could hardly be labeled 'denial of service'. A user
program is in general not 'a service'. With your definition every segfault
could be labeled 'denial of service'.

In any case, I liked your new title much better because it is more accurate
and does not sound as threatening to server administrators as your original
one :)

With kind regards,

-- 
Dr. Werner Van Belle
http://werner.yellowcouch.org/

application/pgp-signature attachment: This is a digitally signed message part.

Received on Aug 03 2007

This message: [ Message body ]
Next message: Gadi Evron: "Re: Exploit In Internet Explorer"
Previous message: Hans Wolters: "Re: security contact for uat.edu needed"
In reply to: bugtraq_at_morph3us.org: "Re: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos