Wireshark · Ethereal-cvs: [Ethereal-cvs] cvs commit: ethereal packet-afs.c packet-ntp.c packet-nbns.c

Ethereal-cvs: [Ethereal-cvs] cvs commit: ethereal packet-afs.c packet-ntp.c packet-nbns.c

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Gerald Combs <gerald@xxxxxxxxxxxxxxxxxxx>

Date: Sun, 19 Nov 2000 10:58:59 -0600 (CST)

gerald      2000/11/19 10:58:58 CST

  Modified files:
    .                    packet-afs.c packet-ntp.c packet-nbns.c 
  Log:
  Fix buffer overruns:
  
    - packet-afs.c: dissect_acl() didn't restrict the size of a string read
      with sscanf().  An exploit has been released.
  
    - packet-nbns.c: When passed an illegal name, get_nbns_name() would
      overrun nbname with an error message.  This isn't exploitable AFAIK,
      but it could result in a crash.
  
    - packet-ntp.c: dissect_ntp() wasn't checking the length of the
      reference clock's host name.  This is most likely exploitable.
      This fix simply lops off the end of the host name if it's too long.
      We should probably add an ellipsis (...) as we have done in other
      places in the code.
  
  Revision  Changes    Path
  1.24      +4 -4      ethereal/packet-afs.c
  1.19      +3 -2      ethereal/packet-ntp.c
  1.48      +4 -2      ethereal/packet-nbns.c

Prev by Date: [Ethereal-cvs] cvs commit: ethereal/gtk main.c
Next by Date: [Ethereal-cvs] cvs commit: ethereal packet-icq.c
Previous by thread: [Ethereal-cvs] cvs commit: ethereal/gtk main.c
Next by thread: [Ethereal-cvs] cvs commit: ethereal packet-icq.c
Index(es):
- Date
- Thread