Re: nginx exploit / accept filters
Mark Felder wrote this message on Fri, Jul 26, 2013 at 06:40 -0500:
> As described here:
> http://lists.grok.org.uk/pipermail/full-disclosure/2013-July/091084.html
>
> If I understand this correctly our accept filters will have zero effect
> on stopping this exploit, correct?
Depending upon where the overflow happens, it could make it even easier
to exploit... If the overflow happens in the header part, then the http
accept filter will make it even easier, and not require the attacker to
do tricks at the TCP layer...
--
John-Mark Gurney Voice: +1 415 225 5579
"All that I will do, has been done, All that I have, has not."
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)