[SCADASEC] Major Linux security hole found
ljknews
ljknews at mac.com
Tue Feb 12 12:43:34 CST 2008
At 12:29 PM -0600 2/12/08, Clint Bodungen wrote:
> Yet another vulnerability caused by a buffer overflow.
Can you point out the language that says it is a buffer overflow ?
>From what I read (as a non-Linux person) this was a failure of
the system service to check the privilege of the caller to write
to the target memory area.
To me a buffer overflow on a system service call would be when
the service checks the target address but fails to account for
the length of the transfer requested.
--
Larry Kilgallen
More information about the scadasec
mailing list