[prev in list] [next in list] [prev in thread] [next in thread] 

List:       vuln-dev
Subject:    Re: Remote service shutdown in mailenable (newest) Follow up
From:       Knud_Erik_Højgaard <knud () skodliv ! dk>
Date:       2002-11-19 17:37:20
[Download RAW message or body]

Alexandru Balan wrote:
> Ok, i don't get it. This is supposed to prove what exactly ? That you
> can sniff out plain text passwords sent to the pop3 server ? i didn't
> see any crash there.. so... i don't get it ? what was your point
> there ?

I took a quick look at it, the pop3 service running as localsystem sure does
crash, not that many A's needed though, and i suck at win32 bufferoverflows.

I must agree a memorydump would be more useful than a packetdump.
--
Knud

[prev in list] [next in list] [prev in thread] [next in thread]