[21910] in bugtraq
Re: Telnetd AYT overflow scanner
daemon@ATHENA.MIT.EDU (John Marquart)
Thu Jul 26 18:32:11 2001
Date: Thu, 26 Jul 2001 16:53:29 -0500 (EST)
From: John Marquart <jomarqua@indiana.edu>
To: aleph1@securityfocus.com
Cc: bugtraq@securityfocus.com
In-Reply-To: <20010726152123.Y18916@securityfocus.com>
Message-ID: <Pine.A41.4.21.0107261651050.41088-100000@gigue.dlib.indiana.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
In addtion to the systems mentioned, AIX 4.3.3 (ML 4) seems to have
problems - SPtelnetAYT shows it as being not vulnerable, but when run
against an AIX 4.3.3_04 box, it causes telnetd to dump core:
Detail Data
SIGNAL NUMBER
11
USER'S PROCESS ID:
41078
FILE SYSTEM SERIAL NUMBER
5
INODE NUMBER
2
PROGRAM NAME
telnetd
ADDITIONAL INFORMATION
strncmp 1C
cleanup B0
netflush 114
ttloop 28
gettermin 7C
doit 400
main 5B8
__start 8C
Symptom Data REPORTABLE 1 INTERNAL ERROR 1 SYMPTOM CODE
PIDS/5765c3403 LVLS/430 PCSS/SPI2 FLDS/telnetd SIG/11 FLDS/strncmp VALU/1c
FLDS/netflush
