[9291] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Digital Unix 4.0 exploitable buffer overflows

daemon@ATHENA.MIT.EDU (FrontLine Assembly)
Fri Jan 29 02:40:41 1999

Date: 	Thu, 28 Jan 1999 13:41:17 -0800
Reply-To: FrontLine Assembly <assembly@MIS03.MINDINFO.COM>
From: FrontLine Assembly <assembly@MIS03.MINDINFO.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  <003801be4a59$9579ba00$2901a8c0@gang_w_s.goselecttech.com>

On Wed, 27 Jan 1999, GANG WANG wrote:

> % /usr/bin/mh/inc +foo -audit `perl -e 'print "a" x 8167'` foo
> Word too long.
> % /usr/bin/mh/inc +foo -audit `perl -e 'print "a" x 2040'` foo
> inc: usage: inc [+folder] [switches]
> % /usr/bin/mh/inc +foo -audit `perl -e 'print "a" x 2048'` foo
> Word too long.
> Seems this inc bug has been fixed already.

This bug is present in Digital UNIX 4.0A also.

OSF1 fubar V4.0 464 alpha
Digital UNIX V4.0A  (Rev. 464); Mon Dec 21 00:51:53 CST 1998
lazy> /usr/bin/mh/inc +foo -audit `perl -e 'print "a" x 8181'` foo
inst fault=opdec pid=30125 <inc> pc=0x120000064 ps=0x8 inst=0x1
Illegal instruction



.-----------------------------------------------------------------.
| FrontLine Assembly |  " You Are Only Alive Because Someone Has  |
|                    |___.  Decided To Let You Live " - KMFDM	  |
| assembly@leviathan.org | URL: http://www.leviathan.org/         |
`-----------------------' `---------------------------------------'

Type Bits/KeyID    Date       User ID
pub  2048/19490121 1997/07/14 FrontLine Assembly

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6.3i
Comment: Requires PGP version 2.6 or later.

mQENAzPJ0MgAAAEIAMn9IayyCXcDulFBfQtx64JBgJwbcvCcdX4FoBsdryl47bWq
gx2A9c7Xe1hlhE2f3z/29M/miDxmuZndqFTnQDXd5yRmFoD9KF/Dfyw2o4EiPPPg
kF13xPujz1mIOxlijrRkLjIx/kfHHakYVDCWL4hEfSFqsSsH6aibDf0jFAm28X8j
1PwbgwuwBvvbW6VRtgcoMt4lr9FbBoYiN3P4IHSGjgAA6llAG/0dxtfMV4mqxzw0
mW5GOTrti5Izehd9AOOHRxWxPdyBn6vI5lrm4E1FvaEzv9gKXKEt3ebGev79GY/s
Kd4zivxJRqYWUCO/AMaeYf3csURITWiW3RlJASEABRG0EkZyb250TGluZSBBc3Nl
bWJseYkBFQMFEDPJ0MlNaJbdGUkBIQEB3QAH/i1zVnYe/Y041VMQwvYzVTmRk57d
2YFqUbIR9oZKlPgq88iZ0p0gaJ22m2Ywx75xCKIlm5fslB86Sm5Xry2O/Q/RK0IG
LaUVHJ7F4xRrgoOQcmIpwLMU2F8C3JkzUcdVNvAVCPpJiFaDGZzFgKJMX/YxjvQF
OnENcH9wOvzvMHnFak38Q31DvmEG/rL4RqNWVnD+2iNV4SnvevNI/q41Rsfil/9x
gezekBWnAcevX4Torefs/bFxwqlxjQ9jD/ZeU8pIRAXTMD7dHxHTFK09zs8vvibU
1mqpMZR/Mu11m8/cFRkl7fclByVY1hdaNRtxMYs6JPd1i8QDrKCA82UP18U=
=MVqB
-----END PGP PUBLIC KEY BLOCK-----


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9291] in bugtraq

Re: Digital Unix 4.0 exploitable buffer overflows

daemon@ATHENA.MIT.EDU (FrontLine Assembly)Fri Jan 29 02:40:41 1999

daemon@ATHENA.MIT.EDU (FrontLine Assembly)
Fri Jan 29 02:40:41 1999