On Wed, 02 Mar 2005 13:01:18 -0600 Matt Brookings <[EMAIL PROTECTED]> wrote:
> I've been quietly monitoring the various ClamAV lists, as
> we use ClamAV for virus scanning, and I noticed a lot of
> talk about message parsing bugs/issues, etc. We have a
> GPL package called EPS which makes for parsing email messages
I doubt it would be able to handle malware authors' tricks.
> banner("Support open-source!\n");
>
> void banner(char *arg) {
> ~ char b[50];
> ~ strcpy(b, arg);
> ~ printf(b);
> }
Please do not support open-source this way ;-) The banner() code
contains two potential security flaws (buffer overflow + format strings
vulnerability).
--
oo ..... Tomasz Kojm <[EMAIL PROTECTED]>
(\/)\......... http://www.ClamAV.net/gpg/tkojm.gpg
\..........._ 0DCA5A08407D5288279DB43454822DC8985A444B
//\ /\ Wed Mar 2 23:07:05 CET 2005
pgpLkmQql5K27.pgp
Description: PGP signature
_______________________________________________ http://lurker.clamav.net/list/clamav-devel.html
