Mark Felder wrote this message on Fri, Jul 26, 2013 at 06:40 -0500: > As described here: > http://lists.grok.org.uk/pipermail/full-disclosure/2013-July/091084.html > > If I understand this correctly our accept filters will have zero effect > on stopping this exploit, correct? Depending upon where the overflow happens, it could make it even easier to exploit... If the overflow happens in the header part, then the http accept filter will make it even easier, and not require the attacker to do tricks at the TCP layer... -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"