[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-Disclosure] Pine: .procmailrc rule against integer overflow
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: [Full-Disclosure] Pine: .procmailrc rule against integer overflow
- From: zen-parse <zen-parse@xxxxxxx>
- Date: Thu, 11 Sep 2003 16:52:56 +1200 (NZST)
A procmail rule something like:
===CUT-BEGIN-RULE===
:0B:
* [a-zA-Z-]+\*[0-9]+\*=
$HOME/pine.int-overflow.attacks.do.not.open.with.pine.
====CUT-END-RULE====
should make exploitation of the integer overflow a little harder.
-- zen-parse
--
-------------------------------------------------------------------------
1) If this message was posted to a public forum by zen-parse@xxxxxxx, it
may be redistributed without modification.
2) In any other case the contents of this message is confidential and not
to be distributed in any form without express permission from the author.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html