[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] *BSD banner INT overflow vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] *BSD banner INT overflow vulnerability
From: "Tyop?" <tyoptyop@xxxxxxxxx>
Date: Wed, 22 Nov 2006 14:36:04 +0100

On 11/22/06, Sean Comeau <scomeau@xxxxxxxxxxxxxx> wrote:
> On Wed, Nov 22, 2006 at 12:25:46PM +0300, dead code crew wrote:
> >
> >  %uname -sir
> >  FreeBSD 6.1-RELEASE GENERIC
> >  %gdb banner
> >  (gdb) r -w 17000000
> >  Program received signal SIGSEGV, Segmentation fault.
> >  0x01010101 in ?? ()
>
> This doesn't crash banner on OpenBSD, and even if it did who
> cares?  What would anyone accomplish by making this setuid
> root?

$ ls -l /usr/bin/banner
-r-xr-xr-x  1 root  wheel  9576 Jul  5  2005 /usr/bin/banner
$

pfiuuu..
I'm safe. Thx a lot.

F34r da banner H4x0r.

-- 
Tyop?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] *BSD banner INT overflow vulnerability
  - From: endrazine

References:
- [Full-disclosure] *BSD banner INT overflow vulnerability
  - From: dead code crew
- Re: [Full-disclosure] *BSD banner INT overflow vulnerability
  - From: Sean Comeau

Prev by Date: Re: [Full-disclosure] *BSD banner INT overflow vulnerability
Next by Date: [Full-disclosure] Lack of environment sanitization in the FreeBSD, OpenBSD, NetBSD dynamic loaders.
Previous by thread: Re: [Full-disclosure] *BSD banner INT overflow vulnerability
Next by thread: Re: [Full-disclosure] *BSD banner INT overflow vulnerability
Index(es):
- Date
- Thread