[Dshield] "Personal Firewalls" are mostly snake-oil"

John Sage jsage at finchhaven.com
Mon Jul 22 23:56:41 GMT 2002

On Mon, Jul 22, 2002 at 03:12:44PM -0500, Wilson, Jesse (I.T. Dept) wrote:
> Since we're on the subject of "Personal Firewalls",
>   Norton Personal Internet Firewall HTTP Proxy Vulnerability
> ------------------------------------------------------------------------

8< snippage >8

> There is a vulnerability with the way in which the NT kernel based HTTP 
> proxy of NPIF deals with a large amount of data that causes a buffer 
> overflow to occur. The test scenario that @stake used to cause this 
> Exception was as follows:

8< more snippage >8

For those of you who have always wondered what this "buffer overflow"
deal is all about, may I recommend:

"Smashing The Stack For Fun And Profit" by Aleph One



Fairly heavy going, but if you want to know what it's all about,
here's where to start.

- John
"Cowardly refusing to create an empty archive."

PGP key      http://www.finchhaven.com/pages/gpg_pubkey.html
Fingerprint  FE 97 0C 57 08 43 F3 EB 49 A1 0C D0 8E 0C D0 BE C8 38 CC B5 

More information about the list mailing list