RE: Buffer overflow in awk

From: Hani Mustafa (hani.mustafaat_private)
Date: Sun Mar 24 2002 - 09:26:10 PST

Next message: Blue Boar: "Re: I HATE antivirus scanners"

Previous message: Dom De Vitto: "RE: IDS and SSL"
In reply to: Kosh Naranek: "RE: Buffer overflow in awk"
Next in thread: Elan Hasson: "Re: Buffer overflow in awk"
Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
Reply: Elan Hasson: "Re: Buffer overflow in awk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Try 8025

euclid#awk -f `perl -e 'print "A" x 8205'`
awk: fatal error: internal error
Aborted (core dumped)

8204 gives an output similar to what you have pasted.


At 06:07 AM 3/17/2002 +1000, Kosh Naranek wrote:
>On debian 2.2r3 unstable
>squall:~# awk -f `perl -e 'print "A" x 1022'`
>awk: cannot open
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
>AAAAAAAAAAAAAA (File name too long)
>
>Same for 8177 and 65535
>
>
>-----Original Message-----
>From: Charles-Edouard Ruault [mailto:cruaultat_private]
>Sent: Saturday, 16 March 2002 03:06
>To: Walter Jr.
>Cc: vuln-devat_private
>Subject: Re: Buffer overflow in awk
>
>
>same behaviour on GNU Awk 3.1.0, on redhat 7.2
>
>Walter Jr. wrote:
>
> >So does conectiva  2.2.13-9cl , awk 3.0.3
> >
> >From: "Max" <flux9at_private>
> >
> >>I can reproduce this on Slackware 8.0, but it takes 8177 char's to
> >>segfault.
> >>
> >
> >>>From: keoki [mailto:keokiat_private]
> >>>
> >>>A buffer overflow exist in awk(named awk on most
> >>>systems, but actualy is gawk/GNU awk) when calling
> >>>
> >>the -f option, to include an awk script, and supplying a
> >>filename with a buffer length of 1022 and up.
> >>[root@neural keoki]# awk -f `perl -e 'print "A" x 1022'`
> >>awk: fatal error: internal error
> >>Abort (core dumped
> >>
> >)
> >
>
>
>--
>Charles-Edouard Ruault

Next message: Blue Boar: "Re: I HATE antivirus scanners"
Previous message: Dom De Vitto: "RE: IDS and SSL"
In reply to: Kosh Naranek: "RE: Buffer overflow in awk"
Next in thread: Elan Hasson: "Re: Buffer overflow in awk"
Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
Reply: Elan Hasson: "Re: Buffer overflow in awk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Mar 24 2002 - 09:59:55 PST