[10702] in bugtraq
Re: Solaris 7/SPARC and sdtcm_convert.
daemon@ATHENA.MIT.EDU (Darren J Moffat - Enterprise Servi)
Thu Jun 3 11:22:14 1999
Mime-Version: 1.0
Content-Type: TEXT/plain; charset=us-ascii
Content-Md5: BbIaQr6tHrgcW5HMwboHQQ==
Message-Id: <199906030822.JAA22234@clem.uk>
Date: Thu, 3 Jun 1999 09:22:37 +0100
Reply-To: Darren J Moffat - Enterprise Services OS Product Support Group <darren.moffat@uk.sun.com>
From: Darren J Moffat - Enterprise Services OS Product Support Group <darren.moffat@UK.SUN.COM>
X-To: acpizer@MACH.UNSEEN.ORG
To: BUGTRAQ@NETSPACE.ORG
> I did a quick search and didn't see this exploit code anywhere on bugtraq,
> this exploit was written by the same person who wrote the solaris libc
> exploit, again this time the epxloit is said to work on both Solaris 2.6
> and 7, but he autho fails to provide offsets for Solaris 7.
This appears to be bug# 4184188 which is fixed in
105566-06 (SPARC)
105567-06 (x86)
With the patch installed the exploit fails thus:
s4u-26% ./sdtcm_convert_exploit
efffd0c0
Problem accessing calendar file /usr/spool/calendar/callog.test:
No such file or directory
--
Darren J Moffat
