paul Posted March 22, 2007 Report Share Posted March 22, 2007 Jean-Sebastien Guay-Leroux discovered an integer underflow in the file_printf() function in file prior to 4.20 that allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow. Updated packages have been patched to address this issue. Link to comment Share on other sites More sharing options...
Recommended Posts