Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: [linux-security] write(1) leak

[linux-security] write(1) leak

From: David Holland <dholland_at_EECS.HARVARD.EDU>
Date: Sun, 19 Jan 1997 12:10:00 -0600

Some versions (the util-linux version, but not the netwrite or netkit
versions) of /usr/bin/write have a buffer overrun problem that is
almost certainly exploitable. Note that this gives access to the tty
group, but not (directly) root.

The fix is to change the two sprintfs to snprintfs. Patches have been
mailed to the maintainer.

--
   - David A. Holland             |    VINO project home page:
     dholland@eecs.harvard.edu    | http://www.eecs.harvard.edu/vino

Received on Jan 20 1997

This message: [ Message body ]
Next message: David Holland: "[linux-security] write(1) leak"
Previous message: FreeBSD Security Officer: "FreeBSD Security Advisory: SA-96:21 - talkd"
In reply to: Digital Dreamer: "Re: Smashing the stack on a DEC Alpha"
Next in thread: David Holland: "[linux-security] write(1) leak"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]