[osiris] Re: [CVE-2006-3120 Vulnerability]
David Vasil
dmvasil at ornl.gov
Tue Sep 5 08:06:51 EDT 2006
Jürgen Heil wrote:
> Hi everyone!
>
> I'am wondering if the Windows installer version (4.1.8) is also vulnerable
> to this security hole (CVE-2006-3120). Does anybody know the answer? And if
> yes, is there an installer version where this problem is fixed?
As far as I can tell, the code for the Win32 part does suffer from the
same problem as the *nix code suffered. I applied a fix to the code in
the main svn trunk for the windows code, but I do not have a build
environment for windows set up at this time.
-dave
More information about the osiris
mailing list