[Full-Disclosure] ipcs on HP-UX 11.0
From: bt@delfi.lt
Date: 03/27/03
- Previous message: Gregory Le Bras | Security Corporation: "[Full-Disclosure] [SCSA-013] Cross Site Scripting vulnerability in testcgi.exe"
- Next in thread: jon@terrasecurity.co.uk: "Re: [Full-Disclosure] ipcs on HP-UX 11.0"
- Reply: jon@terrasecurity.co.uk: "Re: [Full-Disclosure] ipcs on HP-UX 11.0"
- Maybe reply: Dawes, Rogan (ZA - Johannesburg): "RE: [Full-Disclosure] ipcs on HP-UX 11.0"
- Maybe reply: Moraes, Fabio: "RE: [Full-Disclosure] ipcs on HP-UX 11.0"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: full-disclosure@lists.netsys.com From: bt@delfi.lt Date: Thu, 27 Mar 2003 20:55:29 GMT
Hi!
There is a buffer overflow in /usr/bin/ipcs on HP-UX 11.0 (other versions might be
vulnerable too).
$ ls -al /usr/bin/ipcs
-r-xr-sr-x 1 bin sys 28672 Apr 23 1999 /usr/bin/ipcs
$ /usr/bin/ipcs -C `perl -e 'print "A" x 2232'`
Segmentation fault
All ipcs vulnerabilities I know about are on HP Tru64.
This system was patched with PHCO_18374 - the lastest patch for ipcs.
I just wondering if it was known before, and if it was - maybe someone has a working proof
of concept on this.
--------------------------------------------------------------------
This message was sent using DELFI MailMan - http://mailman.delfi.lt/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Gregory Le Bras | Security Corporation: "[Full-Disclosure] [SCSA-013] Cross Site Scripting vulnerability in testcgi.exe"
- Next in thread: jon@terrasecurity.co.uk: "Re: [Full-Disclosure] ipcs on HP-UX 11.0"
- Reply: jon@terrasecurity.co.uk: "Re: [Full-Disclosure] ipcs on HP-UX 11.0"
- Maybe reply: Dawes, Rogan (ZA - Johannesburg): "RE: [Full-Disclosure] ipcs on HP-UX 11.0"
- Maybe reply: Moraes, Fabio: "RE: [Full-Disclosure] ipcs on HP-UX 11.0"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
