Re: passlogd sniffer remote buffer overflow root exploit.

From: Dragos Ruiu (drat_private)
Date: Thu Apr 03 2003 - 21:55:25 PST

Next message: KF: "[Full-Disclosure] SRT2003-04-04-1106 - AOLServer Proxy Daemon API unformatted syslog() call"

Previous message: Vladimir Katalov: "Re: Vulnerability (critical): Digital signature for Adobe Acrobat/Reader plug-in can be forged"
In reply to: dong-h0un U: "[Full-Disclosure] passlogd sniffer remote buffer overflow root exploit."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On April 3, 2003 08:24 am, dong-h0un U wrote:
> Hello.
>
> Exploit confirmed possible truth in OpenBSD.
> But, I did not exploit.
> Also, did not test in RedHat 8.0.
...
> /*
> **
> ** [*] Title: Remote Multiple Buffer Overflow vulnerability in passlogd
> sniffer. ** [+] Exploit code: 0x82-Remote.passlogd_sniff.xpl.c
...

I'm a little unclear on the meaning of "truth" here, but
ProPolice will stop this exploit from working on OpenBSD 3.3 or
-current/cvs.

etoh++ :-)

cheers,
--dr

-- 
pgpkey http://dragos.com/ kyxpgp   -- http://cansecwest.com

Next message: KF: "[Full-Disclosure] SRT2003-04-04-1106 - AOLServer Proxy Daemon API unformatted syslog() call"
Previous message: Vladimir Katalov: "Re: Vulnerability (critical): Digital signature for Adobe Acrobat/Reader plug-in can be forged"
In reply to: dong-h0un U: "[Full-Disclosure] passlogd sniffer remote buffer overflow root exploit."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 04 2003 - 11:39:59 PST