[Full-disclosure] dproxy-nexgen remote
mu-b
mu-b at digit-labs.org
Sat Mar 31 01:18:00 BST 2007
attached is an exploit for the latest dproxy-nexgen, seems the
latest version is just as bad as the previous dproxy-0.5...
problem exists because of lack of NULL checking in dns_decode_reverse_name...
--
mu-b
(mu-b at digit-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct."
- Anonymous, "P ?= NP"
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dproxy-v1.c
Type: text/x-csrc
Size: 7068 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070331/1030c2fb/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.