[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Notepad++ buffer overflow issue

To: xsecurity@xxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: Notepad++ buffer overflow issue
From: Don HO <don.h@xxxxxxx>
Date: Tue, 08 Dec 2009 21:22:09 +0100

Hi,

I am the project leader and the maintainer of Notepad++.

Regarding your report, Notepad++ has a vulnerable issue due to a bufferoverflow

issue (Bugtraq ID:  36426).

Several tests with Notepad++ v5.4.5 and the Notepad++ v5.6.1 (latestversion)

are processed under XP SP3 and Vista SP1.

However, the buffer overflow issue (crash) can not be reproduced at allwith the

provided exploit :
http://www.securityfocus.com/data/vulnerabilities/exploits/36426.c


Could you check again this vunerable issue?

Thank you in advance
Don

References:
- [ MDVSA-2009:098-1 ] krb5
  - From: security

Prev by Date: [security bulletin] HPSBUX02495 SSRT090151 rev.1 - HP-UX Running sendmail, Remote Denial of Service (DoS)
Next by Date: ZDI-09-087: Microsoft Internet Explorer CSS Race Condition Code Execution Vulnerability
Previous by thread: [ MDVSA-2009:098-1 ] krb5
Next by thread: [ MDVSA-2009:099-1 ] openafs
Index(es):
- Date
- Thread