Bug 24810

Summary: kerberosIV and heimdal ftpd is vulnerable to buffer overflow
Product: Base System Reporter: Przemyslaw Frasunek <venglin>
Component: binAssignee: freebsd-bugs (Nobody) <bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: 4.2-STABLE   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Przemyslaw Frasunek 2001-02-02 23:40:00 UTC 
	KTH Kerberos5 and KerberosIV ftpd is vulnerable to strtok() based
	stack overflow.

How-To-Repeat: 
	N/A
Comment 1 Kris Kennaway 2001-02-04 09:39:05 UTC 
On Fri, Feb 02, 2001 at 11:28:35PM +0000, venglin@freebsd.lublin.pl wrote:

> 	KTH Kerberos5 and KerberosIV ftpd is vulnerable to strtok() based
> 	stack overflow.

Thanks, but AFAIK we don't compile this code.

Kris
Comment 2 Jonathan Chen freebsd_committer freebsd_triage 2001-09-03 00:29:18 UTC 
State Changed
From-To: open->closed

We don't use this code, no reason to keep this open.