[3796] in bugtraq
Re: Exploit for crontab bug (FreeBSD 2.1.0).
daemon@ATHENA.MIT.EDU (Theo de Raadt)
Sat Dec 14 20:25:13 1996
Date: Sat, 14 Dec 1996 16:54:36 -0700
Reply-To: Theo de Raadt <deraadt@theos.com>
From: Theo de Raadt <deraadt@theos.com>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: Your message of "Sun, 15 Dec 1996 01:24:02 +0300."
<199612142224.BAA00961@leshka.chuvashia.su>
Leshka Zakharoff <leshka@leshka.chuvashia.su> writes:
> /* This is buffer overflow exploit for crontab bug (FreeBSD 2.1.0). */
> /* If you have any problems with it, drop me a letter. */
> /* Have fun ! */
If I'm right, this was fixed in FreeBSD around... hmm, let's see:
revision 1.5
date: 1996/08/05 00:31:27; author: pst; state: Exp; lines: +6 -4
Fix up some more buffer overflow problems.
Which I guess didn't make it into 2.1. In OpenBSD this was fixed at
the same time:
revision 1.2
date: 1996/08/07 06:18:09; author: deraadt; state: Exp; lines: +6 -5
buf oflow, nice error message; from freebsd
And this fix (along with fixes for other exploitable holes in the same
family of programs, hint hint Leshka) did make it into the OpenBSD 2.0
release.
