[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ncurses buffer overflows (fwd)

From: Thomas E. Dickey
Subject: Re: ncurses buffer overflows (fwd)
Date: Mon, 2 Oct 2000 13:39:23 -0400 (EDT)

On Mon, 2 Oct 2000, [iso-8859-1] Jouko Pynn?nen wrote:

> On Mon, 2 Oct 2000, Thomas E. Dickey wrote:
> > I'd like to see the exploit: there are too many perhaps/maybes in this
> This is a demonstration script I sent to linux people on
> address@hidden, works straight on rh-6.2 and SuSE-6.4, other platforms
> may need fiddling with the number values...

...and does it break if we limit the strcpy's in lib_mvcur.c ?

(it's a small change to relatively stable code: it would make more sense
to distribute the patch than rely on someone else to deduce it).

T.E.Dickey <address@hidden>

reply via email to

[Prev in Thread] Current Thread [Next in Thread]