31 May
2004
31 May
'04
11:36 a.m.
----- Original Message ----- From: "Vinny Abello" <vinny@tellurian.com> To: "Mike Nice" <niceman@att.net> Cc: <nanog@merit.edu> Sent: Monday, May 31, 2004 11:31 AM Subject: Re: What HTTP exploit? -- snip --
I thought if it can be crashed by cramming too much info into a buffer before it's truncated, that's considered a buffer overflow. I'm no programmer and may be off base here but it just struck me as odd also.
it could also be a heap overflow (unless we are talking fbsd, for example). regardless, i would be very interested in having a look at that gentleman's apache setup to see if we can crash it reliably <g> paul