You have a point there, but that is usually the case if you dont know what the vulnerability is, or if it even exists. In this case you know its a format string vulnerability in the logging function, and those are in 99% of the cases exploitable, especially when you can crash the server with a format string command like %n
-- - Met vriendelijke groet, Erik van den Berg Server Administrator/Unix Security Consultant Technische Dienst XL-Hosting http://www.xl-hosting.com [EMAIL PROTECTED] ----- Original Message ----- From: "Mad Scientist" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, June 05, 2003 12:07 AM Subject: Re: [hlds_linux] the %n bug > You know what I call somebody who says they have an exploit but won't > release it? Full of shit. _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
