Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities
From: Przemyslaw Frasunek (venglin_at_freebsd.lublin.pl)
Date: 06/24/05
- Previous message: GulfTech Security Research: "Infopop UBB Threads Multiple Vulnerabilities"
- Maybe in reply to: Przemyslaw Frasunek: "Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities"
- Next in thread: David T. Moraski II: "Re: Solaris 10 /usr/sbin/traceroute vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 24 Jun 2005 17:56:05 +0200 To: adam stevens <aqstevens@gmail.com>
adam stevens napisał(a):
> [root@nexus:~] traceroute -s 1.1.1.1. 127.0.0.1
> traceroute: 1.1.1.1. is an invalid IPv4 source address
> [root@nexus:~] uname -a
> SunOS nexus 5.10 s10_54 sun4u sparc SUNW,Sun-Blade-100
On my box (generic unpatched Solaris 10 on amd64), segfault strongly depends on
stack layout:
atari:venglin:~> traceroute -s 1.1.1.1. 127.0.0.1
traceroute: 144.144.91.194 is an invalid IPv4 source address
atari:venglin:~> setenv DUPA `perl -e 'print "A"x500'`
atari:venglin:~> traceroute -s 1.1.1.1. 127.0.0.1
traceroute: 4.0.0.0 is an invalid IPv4 source address
Segmentation fault
It might be also specific to x86 architecture.
-- * Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE * * JID: venglin@jabber.atman.pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *
- Previous message: GulfTech Security Research: "Infopop UBB Threads Multiple Vulnerabilities"
- Maybe in reply to: Przemyslaw Frasunek: "Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities"
- Next in thread: David T. Moraski II: "Re: Solaris 10 /usr/sbin/traceroute vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
