[18403] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Securax Advisory 11

daemon@ATHENA.MIT.EDU (Michal Zalewski)
Tue Jan 2 19:18:21 2001

Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id:  <Pine.LNX.4.30.0101022035550.30270-100000@dione.ids.pl>
Date:         Tue, 2 Jan 2001 20:36:59 +0100
Reply-To: Michal Zalewski <lcamtuf@DIONE.IDS.PL>
From: Michal Zalewski <lcamtuf@DIONE.IDS.PL>
X-To:         incubus <incubus@SECURAX.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <Pine.LNX.4.30.0101022030110.30270-100000@dione.ids.pl>

On Tue, 2 Jan 2001, Michal Zalewski wrote:

> Am I missing something?

I've tested it by hand, but - not to mention - your exploit couldn't work
at all (on little endians, at least ;), because it is broken:

   sin.sin_family = AF_INET;
-  sin.sin_port = 6000;
+  sin.sin_port = htons(6000);
   sin.sin_addr.s_addr = inet_addr(argv[1]);

Hmmm...

--
_______________________________________________________
Michal Zalewski [lcamtuf@tpi.pl] [tp.internet/security]
[http://lcamtuf.na.export.pl] <=--=> bash$ :(){ :|:&};:
=--=> Did you know that clones never use mirrors? <=--=


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[18403] in bugtraq

Re: Securax Advisory 11

daemon@ATHENA.MIT.EDU (Michal Zalewski)Tue Jan 2 19:18:21 2001

daemon@ATHENA.MIT.EDU (Michal Zalewski)
Tue Jan 2 19:18:21 2001