[Full-disclosure] Exploiting integer overflows
Joxean Koret
joxeankoret at yahoo.es
Thu Oct 26 11:55:59 BST 2006
Hello,
I found various integer overflows that can be triggered from remote in a
product but all of these appears to be unexploitables by common ways.
The product is a closed source one so I do not have the source code to
audit it.
Any tip about when an integer overflow can be determined as non
exploitable?
---
Thanks in advance,
Joxean Koret
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada
digitalmente
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061026/064dbec5/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.