[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Evidence of a ISC being hacked?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Evidence of a ISC being hacked?
From: VX Dude <vxdude2003@xxxxxxxxx>
Date: Thu, 24 Jun 2004 08:27:11 -0700 (PDT)

http://www.kb.cert.org/vuls/id/654390

Apparently one of the new DHCP vulnerabilities stems
from the following code found in a header file.

#define vsnprintf(buf, size, fmt, list) vsprintf (buf,
fmt, list)

Why would any coder replace a more secure function
with a less secure function?  Personally I don't see
any reason except to backdoor the software.  If so,
then is this evidence that ISC has been hacked and
there backdoored?  Are they keeping the incident
quiet?

Yeah I'm paranoid, but someone has to be ^_*

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Evidence of a ISC being hacked?
  - From: Valdis . Kletnieks

Prev by Date: RE: MCAFEE E-MAIL SCAN ALERT!~RE: [FULL-DISCLOSURE] NEW WORM DISCOVERY - POTENTIAL KORGO VARIANT
Next by Date: SV: MCAFEE E-MAIL SCAN ALERT!~RE: [FULL-DISCLOSURE] NEW WORM DISCOVERY - POTENTIAL KORGO VARIANT
Previous by thread: [Full-Disclosure] New Viruses
Next by thread: Re: [Full-Disclosure] Evidence of a ISC being hacked?
Index(es):
- Date
- Thread