[2187] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995

daemon@ATHENA.MIT.EDU (Slava Kritov)
Fri Sep 1 00:45:01 1995

Date:         Wed, 30 Aug 1995 15:58:08 +0300
Reply-To: Bugtraq List <BUGTRAQ@CRIMELAB.COM>
From: Slava Kritov <scorp@un.kiev.ua>
X-To:         Bugtraq List <BUGTRAQ@CRIMELAB.COM>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@CRIMELAB.COM>
In-Reply-To:  <199508290932.KAA12873@puffball.demon.co.uk>

Hi !



On Tue, 29 Aug 1995, Tim Rylance wrote:

> >        We have written an example exploit to overwrite syslog(3)'s
> >        internal buffer using SunOS sendmail(8).
>

Tried that on Alpha/DEC OSF 3.2
Max message size is 1600, if more - message just not get logged at all.
No troubles introduced.

On FreeBSD 1.1.5.1 - max size is ~2K, if more - program which send logs
rq coredumps on 11 sig.

;(

Free is free ... ;)

Best
        Slava Kritov
        Senior Internetwork Specialist
        UN Internet Project for Ukraine
        http://www.un.kiev.ua
        http://www.freenet.kiev.ua


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[2187] in bugtraq

Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995

daemon@ATHENA.MIT.EDU (Slava Kritov)Fri Sep 1 00:45:01 1995

daemon@ATHENA.MIT.EDU (Slava Kritov)
Fri Sep 1 00:45:01 1995