[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] setterm local buffer overflow proof of concept xploit

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] setterm local buffer overflow proof of concept xploit
From: "Orhan BAYRAK" <lord@xxxxxxxxxxxxx>
Date: Mon, 28 Jun 2004 19:13:49 +0800

  Hi everybody,  there is a buffer overflow in the setterm  tool. The bug is in 
-file argument. the bug is in all setterm versionz.  if setterm has 's' perm. 
the bug may be dangerous. But i did not find any suitable  system so that is a 
proof of concept xploit:p I Attached the code to the this mail..

good luck
-- 
______________________________________________
Check out the latest SMS services @ http://www.linuxmail.org 
This allows you to send and receive SMS through your mailbox.


Powered by Outblaze

Attachment: s3tt3rm.c
Description: Binary data

Prev by Date: Re: [Full-Disclosure] Wanted: Sasser executable and derivatives
Next by Date: [Full-Disclosure] Re: USB risks (continued)
Previous by thread: [Full-Disclosure] Apology: Was Multiple Scanning Engines
Next by thread: [Full-Disclosure] Full path disclosure csFAQ
Index(es):
- Date
- Thread