I will only add that even in the best of circumstances with perfect
firewalling, a low privilege sysadmin or helpdesk member/troubleshooter
could easily use this overflow as a hop to privilege escalation and/or
willful damage.
--
You received this bug notification because you are a member of Ubun
I would not consider a buffer overflow and code execution as low
priority, especially when this program is likely to run on a firewall or
network gateway.
Is there a better timeline than when "we feel like there's a real issue"
we'll update? We are now 2 generations depreciated...
--
You receive