[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Buffer overflow vulnerability in dsocks

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Buffer overflow vulnerability in dsocks
From: Michael Adams <parasite@xxxxxxxxxxxxxxxx>
Date: Tue, 5 Sep 2006 10:41:36 +0000

A buffer overflow in variable 'buf' exists due to insufficient validation 
of variable 'name' in function tor_resolve line 218 of software at 
http://www.monkey.org/~dugsong/dsocks/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- [Full-disclosure] Re: Buffer overflow vulnerability in dsocks
  - From: Dave \"No, not that one\" Korn

Prev by Date: [Full-disclosure] [SECURITY] OpenSSL 0.9.8c and 0.9.7k released
Next by Date: [Full-disclosure] [USN-338-1] MySQL vulnerabilities
Previous by thread: [Full-disclosure] [SECURITY] OpenSSL 0.9.8c and 0.9.7k released
Next by thread: [Full-disclosure] Re: Buffer overflow vulnerability in dsocks
Index(es):
- Date
- Thread