Full Disclosure mailing list archives

RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption

From: "Richard M. Smith" <rms () computerbytesman com>
Date: Tue, 10 Feb 2004 21:40:32 -0500

Hi Marc, 

   >>> Date Reported: July 25, 2003

Given that it took Microsoft almost 6 months to fix this problem, I'm
wondering how many other Eeye security holes are in the queue that Microsoft
is currently working on.  Enquiring minds would like to know! ;-)

Richard

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Marc Maiffret (Feb 10)
- Re: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Papp Geza (Feb 10)
- RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Richard M. Smith (Feb 10)
  - RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Byron Copeland (Feb 10)
  - RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Les Ault (Feb 10)
    - RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Byron Copeland (Feb 10)
    - Re: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Benjamin Meade (Feb 10)
    - Microsoft credit policy (was: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption) Spiro Trikaliotis (Feb 11)
    - Re: Microsoft credit policy (was: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption) CHS (Feb 11)
    - Re: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption J. Theriault (Feb 10)
    - RE: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Scott Taylor (Feb 11)
    - Re: EEYE: Microsoft ASN.1 Library LengthOverflow Heap Corruption Tim Kowalsky (Feb 11)
  - Re: EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption Damian Gerow (Feb 10)

(Thread continues...)