[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Buffer Overflow in ActivePerl?

On Tue, 18 May 2004 11:03:40 +0200 Axel Beckert <beckert@xxxxxxx> wrote:
> Am Mon, May 17, 2004 at 10:23:56PM +0200, Oliver@xxxxxxxxxx schrieb:
> > i played around with ActiveState's ActivePerl for Win32, and crashed
> > Perl.exe with the following command:
> > 
> > perl -e "$a="A" x 256; system($a)"

Your command line parameters for perl.exe are probably:
        1.)     -e
        2.)     "$a="
        3.)     A
        4.)     " x 256; system($a)"

Thus are you sure you get $A set with 256 "A"s?

Are you crashing system() or perl.exe's command line parser?

Please define "crashed".

Bye

Volker Tanger
ITK Security

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html