[39277] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)
Fri Jun 24 12:52:16 2005

Message-ID: <42BC2A52.2070102@freebsd.lublin.pl>
Date: Fri, 24 Jun 2005 17:44:18 +0200
From: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
MIME-Version: 1.0
To: bugtraq@securityfocus.com, full-disclosure@lists.grok.org.uk
In-Reply-To: <42BBEB81.2090007@freebsd.lublin.pl>
Content-Type: text/plain; charset=ISO-8859-2
Content-Transfer-Encoding: 8bit

Przemyslaw Frasunek napisał(a):
> Another vulnerability is heap corruption after malformed -s argument:

I've forgotten to provide an example:

atari:root:/home/venglin# traceroute -s 1.1.1.1. 127.0.0.1
traceroute: 4.0.0.0 is an invalid IPv4 source address
Segmentation fault (core dumped)

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE *
* JID: venglin@jabber.atman.pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[39277] in bugtraq

Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)Fri Jun 24 12:52:16 2005

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)
Fri Jun 24 12:52:16 2005