RE: procmail heap overflow

From: Wodahs Latigid (wodahsat_private)
Date: Thu Jun 20 2002 - 01:20:06 PDT

  • Next message: Skot: "Re: procmail heap overflow"

    Was that using csh? Try it with bash.. that may have just been
    the shell complaining.
    
    - wodahs
    
    ----- Original Message -----
    From: Peter Mueller <pmuellerat_private>
    Date: Wed, 19 Jun 2002 16:00:12 -0700
    To: "''kam''" <kamat_private>, flatline <flatlineat_private>
    Subject: RE: procmail heap overflow
    
    
    > Looks like 4.6-PRERELEASE is ok.
    > 
    > > uname -a
    > FreeBSD xxx.yyy.com 4.6-PRERELEASE FreeBSD 4.6-PRERELEASE #2: Sun May  5
    > 22:57:25 PDT 2002     root@localhost:/usr/obj/usr/src/sys/xxx  i386
    > > /usr/local/bin/procmail `perl -e '{print "A"x10240}'`=A
    > Word too long.
    > 
    > Peter
    > 
    > > -----Original Message-----
    > > From: kam [mailto:kamat_private]
    > > Sent: Wednesday, June 19, 2002 11:01 AM
    > > To: flatline
    > > Cc: bugtraqat_private; vuln-devat_private
    > > Subject: Re: procmail heap overflow
    > > 
    > > 
    > > On Wed, Jun 19, 2002 at 02:38:08AM +0200, flatline said 
    > > sometin like...
    > > > hi,
    > > > 
    > > > i found a heap overflow in procmail (up until latest) some time ago
    > > 
    > > I have been able to duplicate this on FreeBSD 4.4-Release
    > > 
    > > uname -a
    > > 4.4-RELEASE FreeBSD 4.4-RELEASE
    > > 
    > > ls -la /usr/local/bin/procmail
    > > -rwsr-sr-x   1 root     mail        66644 Jun 11 07:00
    > > /usr/local/bin/procmail*
    > > .
    > > 
    > 
    > 
    
    -- 
    __________________________________________________________
    Sign-up for your own FREE Personalized E-mail at Mail.com
    http://www.mail.com/?sr=signup
    
    Save up to $160 by signing up for NetZero Platinum Internet service.
    http://www.netzero.net/?refcd=N2P0602NEP8
    



    This archive was generated by hypermail 2b30 : Thu Jun 20 2002 - 09:19:35 PDT