mailing list archives
Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
From: Tonnerre Lombard <tonnerre.lombard () sygroup ch>
Date: Wed, 28 Nov 2007 15:49:34 +0100
On Wed, 28 Nov 2007 13:16:34 +0100 "KJK::Hyperion" <hackbunny () s0ftpj org> wrote:
Tonnerre Lombard ha scritto:
Microsoft FTP Client Multiple Bufferoverflow
Isn't the FTP client compiled with stack overflow protection?
If so, how is that supposed to help?
By terminating the program before the payload is executed
May I suggest that this protection is not perfect? I was hoping that
people on this mailing list consider this to be an established fact.
Tel:+41 61 333 80 33 Güterstrasse 86
Fax:+41 61 383 14 67 4053 Basel
Web:www.sygroup.ch tonnerre.lombard () sygroup ch
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability reepex (Nov 28)