Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995
From: scorp () un kiev ua (Slava Kritov)
Date: Wed, 30 Aug 1995 15:58:08 +0300

Hi !



On Tue, 29 Aug 1995, Tim Rylance wrote:


       We have written an example exploit to overwrite syslog(3)'s
       internal buffer using SunOS sendmail(8).




Tried that on Alpha/DEC OSF 3.2
Max message size is 1600, if more - message just not get logged at all.
No troubles introduced.

On FreeBSD 1.1.5.1 - max size is ~2K, if more - program which send logs
rq coredumps on 11 sig.

;(

Free is free ... ;)

Best
        Slava Kritov
        Senior Internetwork Specialist
        UN Internet Project for Ukraine
        http://www.un.kiev.ua
        http://www.freenet.kiev.ua

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]