[14149] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [ Hackerslab bug_paper ] Linux dump buffer overflow

daemon@ATHENA.MIT.EDU (Joe Shaw)
Thu Mar 2 16:02:49 2000

Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id:  <Pine.GSO.4.21.0003012332100.21759-100000@vellocet.insync.net>
Date:         Wed, 1 Mar 2000 23:34:12 -0600
Reply-To: Joe Shaw <jshaw@INSYNC.NET>
From: Joe Shaw <jshaw@INSYNC.NET>
X-To:         Brett Lymn <blymn@BAEA.COM.AU>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <200003010038.LAA09130@mallee.awadi>

This is the same behavior as all my OpenBSD 2.6-Release boxes.  /sbin/dump
is also not SUID/SGID on these systems by default.

--
Joseph W. Shaw - jshaw@insync.net
Free UNIX advocate - "I hack, therefore I am."

On Wed, 1 Mar 2000, Brett Lymn wrote:

> NetBSD-current, at least, is not vulnerable to this.  It just returns
> a filename too long error.  I do not have a release version of NetBSD
> to try this on at the moment.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[14149] in bugtraq

Re: [ Hackerslab bug_paper ] Linux dump buffer overflow

daemon@ATHENA.MIT.EDU (Joe Shaw)Thu Mar 2 16:02:49 2000

daemon@ATHENA.MIT.EDU (Joe Shaw)
Thu Mar 2 16:02:49 2000