[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NYT on Netscape Crack

To: [email protected]
Subject: Re: NYT on Netscape Crack
From: Ray Cromwell <[email protected]>
Date: Wed, 20 Sep 1995 00:03:04 -0400 (EDT)
Cc: [email protected], [email protected]
In-Reply-To: <[email protected]> from "Perry E. Metzger" at Sep 19, 95 11:24:15 pm
Sender: [email protected]

> > 
> >   Sigh.  For your information the security code for 1.x versions of
> > netscape was not even written by someone from NCSA.
> 
> If there is ANY place in the code that I can do a data driven buffer
> overflow, I can force you to execute code that I supply. I don't give
> a damn if it's in the "security" code. It makes no difference where it
> is. If there is a chink, thats it -- you're meat.

  How would you do this if the buffer overflow happened in a buffer
which was allocated in a separate protected heap apart from stack
and executable data?

-Ray

Follow-Ups:
- Re: NYT on Netscape Crack
  - From: "Perry E. Metzger" <[email protected]>

References:
- Re: NYT on Netscape Crack
  - From: "Perry E. Metzger" <[email protected]>

Prev by Date: PGP back in legal limbo?
Next by Date: Commercial RSAref
Prev by thread: Re: NYT on Netscape Crack
Next by thread: Re: NYT on Netscape Crack
Index(es):
- Date
- Thread