[Full-disclosure] Advisory $ =Thu Mar 16 20:58:58 EST 2006= $ Buffer Overflow in Dantz Retrospect
Sowhat .
smaillist at gmail.com
Fri Mar 17 01:59:02 GMT 2006
Advisory $ =Thu Mar 16 20:58:58 EST 2006= $ Buffer Overflow in Dantz Retrospect
---------------
o/ å BACKGROUND
This problem has no background commentary about the issue in question.
---------------
å \o DESCRIPTION
It is possible to make Dantz Retrospect crash or run arbitrary code by the use of malformed input.
---------------
o/ å HISTORY
2/17/2006 o/ Vendor Notification.
1/0/2006 o/ Vendor Reply.
3/16/2006 o/ Public Disclosure.
---------------
å \o VENDOR RESPONSE
Dantz Retrospect has extended no identified explanation.
---------------
o/ å CVE INFORMATION
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-589807 to this issue
---------------
APPENDIX A VENDOR INFORMATION
http://www.dantz.com
---------------
APPENDIX B REFERENCES
RFC 8617
Full-Disclosure is hosted and sponsored by Secunia.