Re: [Full-disclosure] McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow

To: "Sebastian Wolfgarten" <sebastian@xxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow
From: "Harry Muchow" <wonderfulandromeda@xxxxxxxxx>
Date: Wed, 15 Aug 2007 21:18:39 +0530
Cc: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=GrsI0J/FRRCMGLXKXTlJXSvZ7HqZYJJHRE6dyRKPTt+KauzJGv/ctgc/F355M4hdRIldZ1giqZRF1UDWvDgqumspPFTt6lwOd/MT8ixDgtn9SQyn/yrRBHHeLFis/WW5TDWIcvDLGFcyxy/weFUJdGqh4ygAz0tR6TXR3R+O0Rw=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=dp5pG+nDr0c+gZufe+CQLmJyYZMm8bXXYyBLHdbUgcjrRZrnqmJ605ULqwg7tQVBfKQvqdH120Om4ZeHdt2IP4P4ZQLYwSj3BLF2DjtWUMkgBR6+SZ18lNpKkcK24webNLMrtAt0Kml1BotzQRSC9DHX99CxBg5VfWsdSJlXFfU=
In-reply-to: <46C2F816.9090000@xxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <46C2F816.9090000@xxxxxxxxxxxxxx>

> V - EXPLOIT CODE
>
> An exploit for this vulnerability has been developed but will not
> released to the general public at this time.

Don't ever release that to general public. Why would we like to run rm
-rf / in such a funny way? I can type the command in the shell if all
I want to do is attack myself. ;-)

References:
- McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow
  - From: Sebastian Wolfgarten

Prev by Date: Re: Vulnerability in multiple "now playing" scripts for various IRC clients
Next by Date: Re: Remote Denial of Service for SSH service at Dell DRAC4 (maybeMocana SSH)
Previous by thread: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow
Next by thread: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability
Index(es):
- Date
- Thread