[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] PIRS2007 local buffer overflow vulnerability

To: edi.strosar@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] PIRS2007 local buffer overflow vulnerability
From: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
Date: Fri, 13 Jul 2007 18:32:01 +0400

Dear edi.strosar@xxxxxxxxxxxxxxxxxxxx,

Please explain why is this "vulnerability" and not "just the bug".

--Friday, July 13, 2007, 5:26:17 PM, you wrote to 
full-disclosure@xxxxxxxxxxxxxxxxx:

esvnc> TeamIntell discovered local buffer overflow vulnerability 
esvnc> in PIRS2007 (data collection of companies and active 
esvnc> business subjects in Slovenia). Please see the attached 
esvnc> security advisory for details.

esvnc> Vendor has released a patch that solves this issue.
esvnc> Download link:
esvnc> http://www.pirs.si/slo/index.php?dep_id=29&help_id=60

esvnc> Edi Strosar
esvnc> (TeamIntell)


-- 
~/ZARAZA http://securityvulns.com/
Ęîăäŕ ďňč÷ęŕ ďîăčáŕĺň îň îáćîđńňâŕ, ĺĺ íŕíčçűâŕţň íŕ âĺđňĺë.  (Ëĺě)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] PIRS2007 local buffer overflow vulnerability
  - From: edi.strosar

Prev by Date: [Full-disclosure] PIRS2007 local buffer overflow vulnerability
Next by Date: [Full-disclosure] Script Injection / XSS vulnerability in TIM web portal
Previous by thread: [Full-disclosure] PIRS2007 local buffer overflow vulnerability
Next by thread: Re: [Full-disclosure] PIRS2007 local buffer overflow vulnerability
Index(es):
- Date
- Thread