>From [EMAIL PROTECTED] Fri Jul 18 18:22:22 2003
>> >http://www.securiteam.com/exploits/5ZP0C2AAAC.html
>So, what we have here is someone installing an old version with a=20
>known vulnerability, writing an exploit for it, and bragging about=20
>it. Either that or it took him 3 1/2 months more than J=F6rg to=20
>figure out that there was indeed a vulnerability and he didn't=20
>bother to check if it had been fixed before publishing his exploit.
The only bad thing with this exploit is that SuSE did know about the
problem sice october but did not report it!
So the missing will to cooperate from a commercial Linux distributor
prevented this bug from being removed before cdrtrools-2.0 has been
published.
J�rg
--
EMail:[EMAIL PROTECTED] (home) J�rg Schilling D-13353 Berlin
[EMAIL PROTECTED] (uni) If you don't have iso-8859-1
[EMAIL PROTECTED] (work) chars I am J"org Schilling
URL: http://www.fokus.fraunhofer.de/usr/schilling ftp://ftp.berlios.de/pub/schily
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
