[17984] in bugtraq
format string in ssl dump
daemon@ATHENA.MIT.EDU (c0ncept)
Sun Dec 10 17:23:23 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <OHEKJNEDFKNEKKGBEMIJGEGPCCAA.c0ncept@hushmail.com>
Date: Fri, 8 Dec 2000 08:43:35 -0800
Reply-To: c0ncept <c0ncept@HUSHMAIL.COM>
From: c0ncept <c0ncept@HUSHMAIL.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
Sorry if this has already got posted.
Seeweed found this in ssldump the other day. The follwoing text is from his
website (http://dropwire.dhs.org/~seeweed/):
SSLDUMP is a program witch is simallar to tcpdump, but also adds encryption
to its network debugging procedures..It captures traffic then decodes it to
stdout ... Overall it is a great program to use when finding out where
something went wrong or just to see what your buddy's encryption he has
choosen to use was
Here is the bug I have found...(the Author has been notified..)
1) Run SSLDUMP (needs you to be root unless setuid)
2)Open Up Netscape Navigator it)
3) Type the following in Netscape Navigator: fixme:%s%s%s%s%s%s
4) watch as ssldump with gather the traffic then segfault..
--c0ncept
