Re: Bash Blues.

From: Roland Postle (mailat_private)
Date: Thu Feb 13 2003 - 09:34:36 PST

Next message: TerraTrans Security: "Re: Bash Blues."

Previous message: Eyal Udassin: "New freeware tools available from WebCohort"
In reply to: uk2secat_private-ip.com: "Bash Blues."
Next in thread: 3APA3A: "glibc glob_filename() recurse call stack overflow (Re[2]: Bash Blues)"
Next in thread: TerraTrans Security: "Re: Bash Blues."
Reply: 3APA3A: "glibc glob_filename() recurse call stack overflow (Re[2]: Bash Blues)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>During some work, I noticed GNU bash could be crashed by sending a 
>malformed perl request to the terminal.
>
>	example:  	`perl -e 'print "*/*" x 3500'`
>			<bash crashes>

It's a stack overflow, due to glob_filename (in glob.c) recursively
calling itself while parsing the filename. So probably not exploitable.

- Blazde

Next message: TerraTrans Security: "Re: Bash Blues."
Previous message: Eyal Udassin: "New freeware tools available from WebCohort"
In reply to: uk2secat_private-ip.com: "Bash Blues."
Next in thread: 3APA3A: "glibc glob_filename() recurse call stack overflow (Re[2]: Bash Blues)"
Next in thread: TerraTrans Security: "Re: Bash Blues."
Reply: 3APA3A: "glibc glob_filename() recurse call stack overflow (Re[2]: Bash Blues)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Feb 14 2003 - 08:35:49 PST