RE: security flaws in proftpd/wuftpd ?

To: debian-user@lists.debian.org
Subject: RE: security flaws in proftpd/wuftpd ?
From: "Salman Ahmed" <ssahmed@interlog.com>
Date: Sat, 16 Oct 1999 23:30:47 -0400 (EDT)
Message-id: <[🔎] 14345.17127.815648.93743@gargle.gargle.HOWL>
Reply-to: ssahmed@interlog.com
In-reply-to: <[🔎] XFMail.991016213936.Bryan.Scaringe@computer.org>
References: <[🔎] Pine.LNX.4.20.9910161607230.6680-100000@galactica.firetrail.com> <[🔎] XFMail.991016213936.Bryan.Scaringe@computer.org>

>>>>> "BS" == Bryan Scaringe <Bryan.Scaringe@computer.org> writes:
    BS> offtopic: One of the hols that was fixed a few weeks back stemmed
    BS> from the fact that something like this happened:
    BS> strncpy(acharbuffer, userinput, X) which supposedly led to a buffer
    BS> overflow.  Could someone explain how a buffer overflow could happen
    BS> with strNcpy?  I thought using strNcpy pretty much stopped buffer
    BS> overflows cold.

I think a buffer overflow could happen if "acharbuffer" did not have enough
space for X. You could end up trying to copy more data from "userinput"
than there was space for in "acharbuffer" ie the size of acharbuffer < X.


-- 
Salman Ahmed
ssahmed AT interlog DOT com

Reply to:

References:
- security flaws in proftpd/wuftpd ?
  - From: aphro <nate@firetrail.com>
- RE: security flaws in proftpd/wuftpd ?
  - From: Bryan Scaringe <Bryan.Scaringe@computer.org>

Prev by Date: Re: looking before I leap (bye gnome!)
Next by Date: Re: newt0.30 - a potato problem
Previous by thread: RE: security flaws in proftpd/wuftpd ?
Next by thread: RE: security flaws in proftpd/wuftpd ?
Index(es):
- Date
- Thread