Possible Overflow in ping, Linux?

From: Boris Gentleman Schauerte (gentlemanat_private)
Date: Wed Apr 18 2001 - 09:13:49 PDT

Next message: Fred Newtz: "Re: Hijack IP Address using cable modem (fwd)"

Previous message: Auriemma Luigi: "Download Accelerator Pro - Bug Testing"
Next in thread: Cooper: "Re: Possible Overflow in ping, Linux?"
Reply: Cooper: "Re: Possible Overflow in ping, Linux?"
Reply: Martin Macok: "Re: Possible Overflow in ping, Linux?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sry,
but I'm not sure if it is really a ovflow, I hadn't had enough time to test
it in an debugger, but if I call "ping" under Linux (SuSE Linux 7.1) with
more than 1020 (tested it with some other lengths) Characters it seems to
crash.
I don't know if it is a mechanism to secure the program or an fault, or just
an too long string without the possibilty to insert shellcode.

I'm sending 2 calls I generated...

Program just couts that this is not a host ... well:
ping: unknown host:
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

program dies, if you send more A's ...

It's the normal ping command/binary not v6 ...

If it is not an overflow or this one is well known, I'm sorry to contacted
this group with a fault information.

Greetings from
   Boris Schauerte

Next message: Fred Newtz: "Re: Hijack IP Address using cable modem (fwd)"
Previous message: Auriemma Luigi: "Download Accelerator Pro - Bug Testing"
Next in thread: Cooper: "Re: Possible Overflow in ping, Linux?"
Reply: Cooper: "Re: Possible Overflow in ping, Linux?"
Reply: Martin Macok: "Re: Possible Overflow in ping, Linux?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Apr 18 2001 - 21:19:49 PDT