• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Perl Perl_sv_vcatpvfn Format String Integer Wrap Vulnerability

References:

• [Dailydave] Format string vulnerabilities in Perl programs (Steven M. Christey )
  
• [Dailydave] Webmin miniserv.pl format string vulnerability (Bas Alberts )
  
• [Dailydave] Webmin miniserv.pl format string vulnerability (Dave Aitel )
  
• [perl #17698] Consultation required on possible Perl security issue (Steven M. Christey )
  
• 001: SECURITY FIX: January 5, 2006 All architectures (OpenBSD)
  
• 007: SECURITY FIX: January 5, 2006 All architectures (OpenBSD)
  
• IPCop 1.4.21 Release Notes (IPCop)
  
• IPCop Homepage (IPCop)
  
• Perl Home Page (Perl)
  
• RHSA-2005:880-8 - perl security update (RedHat)
  
• Sun Alert ID: 102192 (Sun)
  
• TN3270RG - Release Name: 1.1.1 (Curtis Hawthorne)
  
• TN3270RG Project Page (Curtis Hawthorne)
  
• Usermin Change Log (Webmin)
  
• Webmin Change Log (Webmin)
  
• Webmin Homepage (Webmin)
  
• Perl format string integer wrap vulnerability (robert@dyadsecurity.com)
  
• Webmin miniserv.pl format string vulnerability (advisory@dyadsecurity.com)