SunOS 5.6 (X86) lpset vulnerability

From: kim yong-jun homepage=ce.hannam.ac.kr/~s96192 (bugscanat_private)
Date: Mon May 10 1999 - 19:43:46 PDT

Next message: Forrest J. Cavalier III: "INN 2.0 and higher. Root compromise potential"

Previous message: Russ: "Re: Bookmarks security vulnerabilities in both Internet Explorer"
Next in thread: Craig Johnston: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Craig Johnston: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Sam Carter: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Holt Sorenson: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: James Edwards: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Michael Dooley: "Re: SunOS 5.6 (X86) lpset vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This is my second post to ButTraq.
If  this is old, I'm sorry.


It's buffer overflow in "/usr/bin/lpset".

View this command :
[loveyou@/] % /usr/bin/lpset -a key=`perl  -e 'print "x" x 1006'` loveyou

[loveyou@/] % /usr/bin/lpset -a key=`perl  -e 'print "x" x 1007'` loveyou
Segmentation fault

:)

byebye..

>-------------------------------------------------------------<
  Loveyou's World
  Yong-Jun , Kim ( bugscanat_private )					
  Network Engineer
>-------------------------------------------------------------<

Next message: Forrest J. Cavalier III: "INN 2.0 and higher. Root compromise potential"
Previous message: Russ: "Re: Bookmarks security vulnerabilities in both Internet Explorer"
Next in thread: Craig Johnston: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Craig Johnston: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Sam Carter: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Holt Sorenson: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: James Edwards: "Re: SunOS 5.6 (X86) lpset vulnerability"
Reply: Michael Dooley: "Re: SunOS 5.6 (X86) lpset vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:45:33 PDT