Bugtraq: Re: OpenVMS fingerd remote stack overflow

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: OpenVMS fingerd remote stack overflow

From: Alexander Sotirov <alex () sotirov net>
Date: Thu, 7 Aug 2008 10:40:16 -0700

On Thu, Aug 07, 2008 at 12:08:53AM +0100, Shaun Colley wrote:

The MultiNet finger service runs on port 79 by default (like other finger
servers) and takes a username to query.  A long string (~250+ or so bytes)
will cause a stack overflow, giving control of a saved return address and
hence the program counter (PC).


Hahahaha, welcome to 1988!

Alex

By Date By Thread

Current thread:

OpenVMS fingerd remote stack overflow Shaun Colley (Aug 07)
- Re: OpenVMS fingerd remote stack overflow Alexander Sotirov (Aug 07)
  - Re: OpenVMS fingerd remote stack overflow Tim Newsham (Aug 08)
- Re: OpenVMS fingerd remote stack overflow Kevin Finisterre (lists) (Aug 07)
- Re: OpenVMS fingerd remote stack overflow mlbugtraq (Aug 07)