Bugtraq mailing list archives
/usr/bin/doscmd on BSDI
From: jay () DS9 AXSNY NET (kasper)
Date: Sun, 14 Mar 1999 00:25:44 -0500
hi,
I found (I use the term loosely) a buffer overflow
in /usr/bin/doscmd distributed with BSDI 3.1..
for example :
finally:~ $ /usr/bin/doscmd `perl -e 'print "A" x 1015'`
Segmentation fault
doscmd is setuid executable as well.
I have not "tested" this out on anything other than 2 BSDI 3.1 (x86)
machines. Insight from other types is greatly appreciated.
bye
-jay
Current thread:
- sendmail 8.9.3 patches to curb RCPT harvesters Peter W (Mar 11)
- Re: sendmail 8.9.3 patches to curb RCPT harvesters Tim Pierce (Mar 12)
- <Possible follow-ups>
- Re: sendmail 8.9.3 patches to curb RCPT harvesters Peter W (Mar 13)
- Re: sendmail 8.9.3 patches to curb RCPT harvesters Andy Church (Mar 13)
- /usr/bin/doscmd on BSDI kasper (Mar 13)
- Re: /usr/bin/doscmd on BSDI Warner Losh (Mar 17)
- Re: sendmail 8.9.3 patches to curb RCPT harvesters Aggelos P. Varvitsiotis (Mar 15)
- Lynx 2.8 overflow Mixter (Mar 15)
- ISS Security Advisory: LDAP Buffer overflow against Microsoft X-Force (Mar 16)
- Microsoft Security Bulletin (MS99-009) aleph1 () UNDERGROUND ORG (Mar 16)
- /usr/bin/doscmd on BSDI kasper (Mar 13)