trojan tcpdump?
Wolfgang S. Rupprecht
wolfgang.rupprecht+gnus200703 at gmail.com
Sat Mar 17 06:47:35 UTC 2007
Jim Cornette <fc-cornette at insight.rr.com> writes:
> I was concerned mainly because the two packages were listed in the
> vulnerability from 2002.
>
> http://www.symantec.com/security_response/vulnerability.jsp?bid=6171
Thanks! I thought I remembered something like that.
If attackers wanted to get trickier they could even add an intentional
buffer overflow to some of the packet parsing code. The code and
binaries would look innocent enough.
-wolfgang
--
Wolfgang S. Rupprecht http://www.wsrcc.com/wolfgang/
More information about the fedora-list
mailing list