Re: slackware-3.5 /bin/su buffer overflow

From: Rick Franchuk (rickfat_private)
Date: Tue Aug 18 1998 - 08:48:02 PDT

Next message: Aleph One: "Microsoft Security Bulletin (MS98-012)"

Previous message: Chatchai Watchakit: "slackware-3.5 /bin/su buffer overflow"
Maybe in reply to: Chatchai Watchakit: "slackware-3.5 /bin/su buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 18 Aug 1998, Chatchai Watchakit wrote:

> >From exploit4.c of Phrack 49 (P49-14) can exploit /bin/su of slackware-3.5
> kernel 2.0.34
>
> ---------------------
>
> endeavor:~$ gcc -o exploit4 exploit4.c
> endeavor:~$ ./exploit4
> Using address: 0xbffffb20
> bash$ /bin/su $RET
> bash#
>
> ---------------------

Tested on RH5.1 and Slackware 3.4, neither appear to be vulnerable to this
script as-is.

--
  __________________________________________
 |                                          |
 |  Rick Franchuk  -  TranSpecT Consulting  |
 |_______                            _______|
         \mailto:rickfat_private/
          \_____ICQ_#_4435025______/

Next message: Aleph One: "Microsoft Security Bulletin (MS98-012)"
Previous message: Chatchai Watchakit: "slackware-3.5 /bin/su buffer overflow"
Maybe in reply to: Chatchai Watchakit: "slackware-3.5 /bin/su buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:12:55 PDT