[21861] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: NSFOCUS SA2001-04 : Solaris dtmail Buffer Overflow Vulnerability

daemon@ATHENA.MIT.EDU (Virtualcat Blackcat)
Wed Jul 25 15:49:34 2001

Date: 25 Jul 2001 02:36:48 -0000
Message-ID: <20010725023648.5911.qmail@securityfocus.com>
From: Virtualcat Blackcat <virtualcat@hotmail.com>
To: bugtraq@securityfocus.com

Couldn't reproduce on SUNOS 5.6
% uname -a
SunOS sundev1 5.6 Generic_105181-19 sun4u 
sparc SUNW,Ultra-1
% echo $SHELL
/usr/bin/ksh
% cp /usr/dt/bin/dtmail .
% export MAIL=`perl -e print "A"x2000'`
% ./dtmail 
<!-- Clicked on [Local] when Xwindow popped up -->
% 
dtmail didn't crash.

% export MAIL=`perl -e 'print "A"x20000'`
% ./dtmail
%
Didn't crash either.

% export HOME=`perl -e 'print "A"x360'`
% ./dtmail                             
Segmentation Fault(coredump)

Looks like there is something in $HOME, not in $MAIL 
as posted.

Regards,
Virtualcat

..oO(I am virtual)Oo.. 
virtualcat@xfocus.org


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[21861] in bugtraq

Re: NSFOCUS SA2001-04 : Solaris dtmail Buffer Overflow Vulnerability

daemon@ATHENA.MIT.EDU (Virtualcat Blackcat)Wed Jul 25 15:49:34 2001

daemon@ATHENA.MIT.EDU (Virtualcat Blackcat)
Wed Jul 25 15:49:34 2001