Multiple Vendor C Library realpath() Off-By-One Buffer Overflow Vulnerability

Multiple Vendor C Library realpath() Off-By-One Buffer Overflow Vulnerability

References:

Apple Security Updates (Apple)
NetBSD Security Advisory 2003-011 (NetBSD)
Sun Alert ID: 56121 (Sun Microsystems)
Sun Linux Support - Sun Linux Patches (Sun)
TLSA-2003-46 wu-ftpd (Turbolinux)
Wu-Ftpd Homepage (Washington University)
wu-ftpd fb_realpath() off-by-one bug (Janusz Niewiadomski )
wu-ftpd-2.6.2 off-by-one remote exploit. ("dong-h0un U" )

Privacy Statement
Copyright 2010, SecurityFocus