[Full-Disclosure] [argv] PHC Threatcon Monitor & Hacklog Vulnerable

From: ARGV (argv@hushmail.com)
Date: 03/07/03

  • Next message: hellNbak: "Re: [Full-Disclosure] Security Certifications" 
    To: full-disclosure@lists.netsys.com
From: "ARGV" <argv@hushmail.com>
Date: Fri,  7 Mar 2003 08:13:06 -0800

    -----BEGIN PGP SIGNED MESSAGE-----

    1. Topic:
            Threatcon monitor
            Hacklog

            OMG WTF LOL -- OHDAY PHC EXPLOIT -- OMG WTF LOL

    2. Relevant versions:
            Vulnerable: 1.0

            Not Vulnerable: NONE!

    3. Problem description:
            OMG WTF LOL!

            http://phrack.efnet.ru/threatbar.c

            if ((ffd = open(filename, O_WRONLY | O_CREAT)) < 0)

            OMG WTF LOL -- RACE CONDITION -- OMG WTF LOL!!!!!!

            TMP RACE 101:
                    MAKE SYMLINK TO /etc/shadow IN /tmp MATCHING FILENAME
                    WAIT FOR 31337 H4X0R TO RUN THREATBAR
                    ...
                    PROFIT!

            http://phrack.efnet.ru/hacklog.c

            OMG WTF LOL -- ANOTHER BUG -- OMG WTF LOL!!!!

             if (argc != 3)
            {
            fprintf (stderr, "Usage: %s <typescript> <timing-file>\n",
                     argv[0]);

            WHOA MAN, WHAT IF ARGV IS NULL? WHOA MAN! OMG WTF LOL!!!

    4. Workaround:
            BOW DOWN TO ME, THE GREAT TSAO
            ME SO SMART OMG WTF LOL!!!

    5. References:
            THANKS TO SHIFTEE FOR THE EXPLOITZZZ OMG LOL!!!

    6. Contact:
            argv@hushmail.com

    -----BEGIN PGP SIGNATURE-----
    Version: Hush 2.2 (Java)
    Note: This signature can be verified at https://www.hushtools.com/verify

    wlkEARECABkFAj5owsUSHGFyZ3ZAaHVzaG1haWwuY29tAAoJEO/BXrpp9Bkpw/MAoKSB
    0Ault9S+OEhzfn3HcGo1YnpnAKCbVkFThlAMs4GeOcWAcJbavXNR5g==
    =83gT
    -----END PGP SIGNATURE-----

    Concerned about your privacy? Follow this link to get
    FREE encrypted email: https://www.hushmail.com/?l=2

    Big $$$ to be made with the HushMail Affiliate Program:
    https://www.hushmail.com/about.php?subloc=affiliate&l=427
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: hellNbak: "Re: [Full-Disclosure] Security Certifications"

    Relevant Pages

    • [Full-Disclosure] [argv] PHC hacklog part deux (No way, fool...)
      ... Workaround: ... References: ... Version: Hush 2.2 (Java) ...
      (Full-Disclosure)
    • [Full-Disclosure] [argv] sockz loves file exploit exploit
      ... Workaround: ... References: ... Version: Hush 2.2 (Java) ...
      (Full-Disclosure)
    • Re: Why C# and Java have got it wrong
      ... Do you have any references to the claim that there is a fixation ... on garbage collection? ... that there have been "don't need to manage my resources" evangelizing ... >Java and C# actually provide poor tools for resource management. ...
      (comp.programming)
    • Re: Game programming -- Java performance?
      ... references to one another as a) indices, names, or other things and b) ... Murphy's Laws of java programming: ... Haha, well, you should probably try to find out why (perhaps step through with a debugger, or look at the source code?) ... If the app seems to have hung and you're sure it's an infinite loop ...
      (comp.lang.java.programmer)
    • Re: Return local object from function
      ... I thought that Java references were 64 bits (8 ... a pointer and there's therefore more going on in there than a simple ... contiguous in memory within another object. ...
      (comp.lang.java.programmer)