|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
/usr/bin/doscmd on BSDI
kasper (jay
DS9.AXSNY.NET)Sun, 14 Mar 1999 00:25:44 -0500
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Mixter: "Lynx 2.8 overflow"
- Previous message: X-Force: "ISS Security Advisory: LDAP Buffer overflow against Microsoft"
- Next in thread: Warner Losh: "Re: /usr/bin/doscmd on BSDI"
hi,
I found (I use the term loosely) a buffer overflow
in /usr/bin/doscmd distributed with BSDI 3.1..
for example :
finally:~ $ /usr/bin/doscmd `perl -e 'print "A" x 1015'`
Segmentation fault
doscmd is setuid executable as well.
I have not "tested" this out on anything other than 2 BSDI 3.1 (x86)
machines. Insight from other types is greatly appreciated.
bye
-jay
- Next message: Mixter: "Lynx 2.8 overflow"
- Previous message: X-Force: "ISS Security Advisory: LDAP Buffer overflow against Microsoft"
- Next in thread: Warner Losh: "Re: /usr/bin/doscmd on BSDI"