From xemacs-m  Thu Sep 25 12:33:24 1997
Received: from altair.xemacs.org (steve@xemacs.miranova.com [206.190.83.19])
	by xemacs.org (8.8.5/8.8.5) with ESMTP id MAA20683
	for <xemacs-beta@xemacs.org>; Thu, 25 Sep 1997 12:33:23 -0500 (CDT)
Received: (from steve@localhost)
	by altair.xemacs.org (8.8.7/8.8.7) id KAA00694;
	Thu, 25 Sep 1997 10:39:33 -0700
Mail-Copies-To: never
To: xemacs-beta@xemacs.org
Subject: Re: Fatal serious (security) flaw in XEmacs 19.16/20.3
References: <m2zpp22ae9.fsf@altair.xemacs.org> <ocrsout5vgm.fsf@ml.com>
X-Face: (:YAD@JS'&Kz'M}n7eX7gEvPR6U1mJ-kt;asEc2qAv;h{Yw7ckz<7+X_SYeTNAaPui:e~x$
 ,A=gkt*>UPL/}\a/#C~v2%ETiAY_sx;xve0yL??JWTtX_-NUzXyP38UdW#cmN1\4(X!c3m#%IbtB-3
 Z-!xpZi!`E.s{(;aP=b11"!3wQu]1j@^V|;n=B|{l<bZV1.AI`zWV%kPCnUhcgEe\(}/_kNd6,*3ZJ
 Q3o<YQ3^u;7jS=:p0--u3msQO
X-Attribution: sb
From: SL Baur <steve@xemacs.org>
In-Reply-To: Colin Rafferty's message of "25 Sep 1997 10:17:29 -0400"
Mime-Version: 1.0 (generated by tm-edit 7.108)
Content-Type: text/plain; charset=US-ASCII
Date: 25 Sep 1997 10:39:33 -0700
Message-ID: <m23emtl2cq.fsf@altair.xemacs.org>
Lines: 11
X-Mailer: Quassia Gnus v0.10/XEmacs 20.3(beta24) - "Ljubljana"

Colin Rafferty <craffert@ml.com> writes:

>> [1]  A unit definition of `show stopper' if there ever was one.

> What is the security flaw?

Stack overrun.  Cookbooks are available to take advantage of such
flaws.

The directory/filename code is a particularly dangerous subsystem for
this to occur in because of named MIME attachments.

