11-07-2009, 09:33 PM
I spotted a potential remote corruption years ago and thought it would work in theory, but never got around to trying it. Glad to see I was right.
If anyone's really worried about this exploit, I can try to find my notes and write up a fix. A short DHack style patch could fix the problem, so there'd be no need to download an arbitrary binary from me. Caveat: since the fix is so small, anyone competent to implement autokill could easily derive an exploit once they see what I change to add protection.
Mike, are you personally familiar with the details of how to cause remote corruption (but lack the tools to generate the necessary messages), or are you going based on the demonstrated abilities of your associates?
If anyone's really worried about this exploit, I can try to find my notes and write up a fix. A short DHack style patch could fix the problem, so there'd be no need to download an arbitrary binary from me. Caveat: since the fix is so small, anyone competent to implement autokill could easily derive an exploit once they see what I change to add protection.
Mike, are you personally familiar with the details of how to cause remote corruption (but lack the tools to generate the necessary messages), or are you going based on the demonstrated abilities of your associates?