Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.lang.postscript > #3467

Re: gs 'exploit'?

Show all headers | View raw

On Wednesday, September 18, 2019 at 9:19:14 AM UTC-5, ken wrote:
> In article <0f031aa2-0c37-4f5e-9784-edc7a736bff7@googlegroups.com>, 
> luser.droog@gmail.com says...
> > 
> > On Monday, September 16, 2019 at 2:12:44 AM UTC-5, ken wrote:
> > 
> > > Apologies for the slow response, I've been on vacation.
> > > 
> > > 
> > > 				Ken
> > 
> > No problem, thanks for the info. I realize now that I ought to
> > have emailed you directly just in case this was sensitive.
> 
> Its a public disclosure so it can't really be sensitive :-)
> 
> There's a CVE for it somewhere, but I can't recall the number offhand
> 
> 
> 		Ken

Well, that's a relief but I learned about it from a random email from someone
whose name I can't read (because I don't know the language). So, I'm still
considering posting this thread as a poor decision. Despite the innocent
result, I did not make the best choice based on what I knew at the time.

But it is all very interesting. I played with the code a little bit, but 
without actually reading the gs source to find the relevant code being
prodded. But it is curious that the error has to trip twice before the 
payload is left on the stack.

Back to comp.lang.postscript | Previous | Next — Previous in thread | Find similar | Unroll thread

Thread

gs 'exploit'? luser droog <luser.droog@gmail.com> - 2019-09-09 15:02 -0700
  Re: gs 'exploit'? luser droog <luser.droog@gmail.com> - 2019-09-09 20:17 -0700
    Re: gs 'exploit'? luser droog <luser.droog@gmail.com> - 2019-09-09 20:20 -0700
      Re: gs 'exploit'? ken <ken@spamcop.net> - 2019-09-16 08:12 +0100
        Re: gs 'exploit'? luser droog <luser.droog@gmail.com> - 2019-09-17 12:22 -0700
          Re: gs 'exploit'? ken <ken@spamcop.net> - 2019-09-18 15:19 +0100
            Re: gs 'exploit'? luser droog <luser.droog@gmail.com> - 2019-10-13 02:14 -0700

csiph-web