|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] *BSD banner INT overflow vulnerability
From: Sean Comeau (scomeau
cansecwest.com)
Date: Wed Nov 22 2006 - 06:50:10 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, Nov 22, 2006 at 12:25:46PM +0300, dead code crew wrote:
>
> %uname -sir
> FreeBSD 6.1-RELEASE GENERIC
> %gdb banner
> (gdb) r -w 17000000
> Program received signal SIGSEGV, Segmentation fault.
> 0x01010101 in ?? ()
>
This doesn't crash banner on OpenBSD, and even if it did who
cares? What would anyone accomplish by making this setuid
root?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]