> [12:02] <user1> theres an lpd exploit out
Well, maybe true, maybe just rumors...
While I'm not aware of any such exploit, I thought I'd dig up an email
I wrote almost a year ago, concerning security problems in the BSD based
lpd shipped by several Linux vendors.
I don't know whether these holes got fixed; I didn't specifically check
whether these problems were indeed exploitable. The comment that says
"fortunately this memory appears to be malloced" was of course naive ;-)
Working heap overflow exploits have been published since then.
Even if most of the stuff below is academic, some may find it useful...
Cheers,
Olaf
--
Olaf Kirch | --- o --- Nous sommes du soleil we love when we play
okir_at_monad.swb.de | / | \ sol.dhoop.naytheet.ah kin.ir.samse.qurax
okir_at_caldera.de +-------------------- Why Not?! -----------------------
UNIX, n.: Spanish manufacturer of fire extinguishers.
attached mail follows:
Received on Dec 02 2000
Intro
