Re: FYI: DAV-related buffer overflow exploit in IIS 5

"Jim Whitehead" <ejw@cse.ucsc.edu>
> FYI.
> 
> So, how many implementors on the list are confident *you* don't also have a
> buffer overflow exploit lurking in your code?
> 
> - Jim
> 
> http://www.cert.org/advisories/CA-2003-09.html
> 
>  CERTr Advisory CA-2003-09 Buffer Overflow in Microsoft IIS 5.0
> Original issue date: March 17, 2003
> Last revised: Mon Mar 17 14:34:35 EST 2003
> Source: CERT/CC
A provocing question. So I think I will answer it:
I'm pretty sure :-)
I won't have a single line of C (The mother of all viruses) in my code and also on
the whole server.
In Oberon a buffer overflow can at most crash my WebDAV process and that's it.

Edgar 

-- 
edgar@edgarschwarz.de                  "http://www.edgarschwarz.de"
"http://www.edgar-schwarz.de/forum/oberon"    Running Active Oberon
Make it as simple as possible, but not simpler.     Albert Einstein

Received on Tuesday, 18 March 2003 15:15:01 UTC