On Behalf Of Joe Plutanot
Sent: Thursday, 25 October 2007 10:03 a.m.
To: 'Midrange Systems Technical Discussion'
Subject: RE: DB2UDB hack
From: Joe Pluta
I guarantee they haven't performed a buffer overrun exploit on any
native i5/OS service, and it's fuzzy statements like "take advantage
of these leaks" that make me crazy.
Just to be clear, by "they" above, I mean your "benevolent hackers" and
anybody at IBM's labs. As I've noted, there's a theoretical possibilitythat
someone with the skills of Leif Svalgaard and the knowledge of a bug in anIBM
program MIGHT be able to somehow cause i5/OS to execute a data buffer, butI'm
pretty comfortable nobody in the outside world has ever done so, or willever
And in case I haven't been crystal clear, I do not include PASE in this
statement. PASE is not i5/OS, any more than a Linux partition is or
running in VMWare on a Mac is OS X.