Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities

Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities

From: Przemyslaw Frasunek <venglin_at_freebsd.lublin.pl>
Date: Fri, 24 Jun 2005 17:44:18 +0200

Przemyslaw Frasunek napisał(a):
> Another vulnerability is heap corruption after malformed -s argument:

I've forgotten to provide an example:

atari:root:/home/venglin# traceroute -s 1.1.1.1. 127.0.0.1
traceroute: 4.0.0.0 is an invalid IPv4 source address
Segmentation fault (core dumped)

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE *
* JID: venglin_at_jabber.atman.pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *

Received on Jun 24 2005

This message: [ Message body ]
Next message: Peter Bartosch: "Re: Firefox Crash??"
Previous message: Przemyslaw Frasunek: "Solaris 10 /usr/sbin/traceroute vulnerabilities"
In reply to: Przemyslaw Frasunek: "Solaris 10 /usr/sbin/traceroute vulnerabilities"
Next in thread: Przemyslaw Frasunek: "Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities"
Maybe reply: Przemyslaw Frasunek: "Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]