Hosting Provided By

Re: Threat scenarios from local buffer overflow

From: ATD <simon(at)snosoft.com>
Date: Sun Jan 19 2003 - 23:50:38 EST

SmartKID,

Any buffer overflow could be a threat. In the case of notepad being vulnerable though I think you would need some sort of a helper application. One example would be, "if" IE launched note pad then it might be possible for an attacker to specially format a URL to take advantage of the notepad.exe vulnerability. I hope this satisfies your curiosity, if you want more detail I can provide you with it.

On Sat, 2003-01-11 at 12:45, SmartKID wrote:
> Hi,
>
> Are there any possible threat scenarios from a buffer overflow in an

-- 

ATD 
Secure Network Operations, Inc. 
http://www.snosoft.com/documents/SNOsoft-corporate-outline.pdf
---------------------------------------------------------------------
Key fingerprint = BEDD 0FAD 4CE2 6399 551F  86F5 B036 A540 D47C EC101

application/pgp-signature attachment: This is a digitally signed message part

Received on Thu Jan 23 12:52:40 2003

This message: [ Message body ]
Next message: David Gillett: "RE: Threat scenarios from local buffer overflow"
Previous message: James Ndovi: "PIX Firewall Checklist"
In reply to SmartKID: "Threat scenarios from local buffer overflow"
Next in thread: David Gillett: "RE: Threat scenarios from local buffer overflow"
Reply: David Gillett: "RE: Threat scenarios from local buffer overflow"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:03:36 EDT