Re: Buffer overflow in Python code

From: Florian Weimer (Florian.Weimerat_private-Stuttgart.DE)
Date: Mon Nov 26 2001 - 14:54:07 PST

Next message: Brad: "Re: Malicious use of grc.com"

Previous message: Blue Boar: "Re: Malicious use of grc.com"
In reply to: Chris Ess: "Re: Buffer overflow in Python code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Chris Ess <azarinat_private> writes:

> Using the supplied script, I did achieve a segfault during the traceback
> with Python 2.1.  However, I'm hardpressed to figure out how one would
> exploit this...  After all, the Python binary is rarely SUID or SGID.  (I
> know it's not on my system.)

It's perhaps an issue with applications featuring embedded Python,
like Zope.

-- 
Florian Weimer 	                  Florian.Weimerat_private-Stuttgart.DE
University of Stuttgart           http://cert.uni-stuttgart.de/
RUS-CERT                          +49-711-685-5973/fax +49-711-685-5898

Next message: Brad: "Re: Malicious use of grc.com"
Previous message: Blue Boar: "Re: Malicious use of grc.com"
In reply to: Chris Ess: "Re: Buffer overflow in Python code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Nov 26 2001 - 16:50:27 PST