Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: Re: possible gnome remote overflow

Re: possible gnome remote overflow

From: Crispin Cowan <crispin_at_CSE.OGI.EDU>
Date: Tue, 19 Oct 1999 01:58:17 +0000

Ryan Permeh wrote:

> This will crash an open X session, even from remote. I do not know a
> lot about gnome, but i do know X sessions
> crashing is generally regarded as a "Bad Thing". I poked at the code a
> bit, but couldn't find the piece where
> this is likely happening.

If X and Gnome were StackGuarded, then you might get a present in your
syslog telling you the name of the function containing the smashed buffer:

   * if the buffer was an auto variable
   * and if the function containing the buffer tried to return *before* the
     core dump happened

I have StackGuarded XFree86 RPM's for RH 5.2 here:
http://immunix.org/StackGuard/RH52/RPMS/

Unfortunately, I do not have StackGuarded Gnome or RH 6.0 RPMs. But the
StackGuard compiler is available if someone wanted to take a poke at it:
http://immunix.org/StackGuard/gcc-2.7.2.3-14_SGc1_SG12.i386.rpm

Conversely, if someone can point us at an easy to recompile-from-source
pile of source RPMs for the necessary Gnome components, then we might take
a poike at it.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc. http://wirex.com
Free Hardened Linux Distribution: http://immunix.org
Received on Oct 19 1999

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos