Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !

From: Half Adder (dps@LIB-VAI.LIB.ASU.EDU)
Date: Fri Apr 13 2001 - 06:45:05 PDT

Next message: ghandi: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"

Previous message: Marc Maiffret: "Solaris ipcs vulnerability"
In reply to: Crist Clark: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"
Next in thread: ghandi: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> curious how you plan to inject code if the only way to get the seg. fault
> is to enter a bare '~'? Kinda limits what you can get on the stack, no?

Actually you can do this:

CWD ~/fffffffffffffffffffffff.. (etc)

I could fit about 390 bytes after the ~/ when I tried it against Solaris
7.

also works with MKD RMD

Try it, you'll like it.

Next message: ghandi: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"
Previous message: Marc Maiffret: "Solaris ipcs vulnerability"
In reply to: Crist Clark: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"
Next in thread: ghandi: "Re: SUN SOLARIS 5.6/5.7 FTP Globbing Exploit !"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 10:06:20 PDT