- 积分
- 10664
- UID
- 5
- 在线时间
- 小时
- 最后登录
- 1970-1-1
|
发表于 2005-2-5 14:09:20
|
显示全部楼层
官方的说明是这样的:
Version 3.08 is a precautionary security release. There was a potential buffer overrun in the networking code of the client that is fixed with version 3.08. Note that to exploit this vulnerability, a potential attacker would have to trick the client into contacting a fake server rather than the actual SETI@home server. To our knowledge, no SETI@home client has ever been attacked in this manner.
Thanks go to Berend-Jan Wever for finding this bug and demonstrating the exploit and to Steffen Zahn for helping to track it down in the code. |
|