Vulnerability Development mailing list archives

Re: buffer overflow with greek characters, NIX

From: Tim McKenzie <webmaster () crazy-horse net>
Date: Thu, 18 Apr 2002 00:14:23 -0400

On Thursday 18 April 2002 12:20 am, you wrote:

Nah the unix guy is suffering from a bug in X and or in the protocol
handling of KDE in general including Konqueror  / kmail / file dialog
boxes / etc...  Long title bars are one way of triggering this. I have
posted a few times on this... xterm --title b0fhere may crash your box
if you have the bug in X. If its a bug in Konqueror / KDE protocols try
making an html file with AAAAAAAA... a few thousand times as the
<title>AAA....</title> and open it.


This appears to be the case.. I get the link to BestBuy in Galeon on a 
default Mandrake 8.2 install. Same goes for lynx. 

system:
 cat /proc/version 
Linux version 2.4.18-6mdk (quintela () bi mandrakesoft com) (gcc version 2.96 
20000731 (Mandrake Linux 8.2 2.96-0.76mdk)) #1 Fri Mar 15 02:59:08 CET 2002

 rpm -qa galeon
galeon-1.0.3-4mdk

-Tim

-KF

MegaHz wrote:

check this guy out,

================================================================


From: "Simon Dickson" <simon () phpnode org>

To: <costcon () cytanet com cy>; <bugtraq () securityfocus com>
Cc: <eurohack () eurohack net>
Sent: Tuesday, April 16, 2002 7:22 PM
Subject: Re: buffer overflow, using greek characters, AGAIN!

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I dont know about IE, but I checked your test page in Konqueror 3.0 and
it killed everything.

By everything I mean X crashed. I'll just explain what I run.

Slackware 8.0
Millions of changes and updates
Use windowmaker 0.80.0
I just run the KDE Applications cos they are good.
Was running kmail, kate and konqueror at the time.
It crashed back a console shell.

Simon


================================================================

test page: http://megahz.cyhackportal.com/hey.html

pls test it out on your own *nix boxes and let me know


/*
* Andreas Constantinides (MegaHz)
* Admin of cHp (www.cyhackportal.com)
*
*/

Current thread:

buffer overflow with greek characters, NIX MegaHz (Apr 17)
- Re: buffer overflow with greek characters, NIX Sebastian Jaenicke (Apr 17)
- Re: buffer overflow with greek characters, NIX Gordon Ewasiuk (Apr 17)
- Re: buffer overflow with greek characters, NIX KF (Apr 17)
  - Re: buffer overflow with greek characters, NIX Tim McKenzie (Apr 18)
  - Re: buffer overflow with greek characters, NIX David H (Apr 18)
    - Re: buffer overflow with greek characters, NIX KF (Apr 18)
- Re: buffer overflow with greek characters, NIX FozZy (Apr 17)
  - Re: buffer overflow with greek characters, NIX (yeah yeah again) António Paulo Raimundo (Apr 18)
- Re: buffer overflow with greek characters, NIX Joerg Mayer (Apr 18)