Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)
From: Nelson Sampaio Araujo Junior (nelson@lunenetworks.com.br)Date: 01/30/02
- Previous message: Bruno Mosconi: "Re: Enumerating users on a Domino webserver"
- Next in thread: ladd harris: "Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Nelson Sampaio Araujo Junior" <nelson@lunenetworks.com.br> To: "Eduardo Damato" <damato@unesp.br>, <vuln-dev@securityfocus.com> Date: Wed, 30 Jan 2002 17:53:50 -0200
Hi,
I have experienced this on an apache installation. Doing a rpm -Fvh should
solve. If not, deleting and reinstalling the package should do it.
Regards
Nelson
----- Original Message -----
From: "Eduardo Damato" <damato@unesp.br>
To: <vuln-dev@securityfocus.com>
Sent: Wednesday, January 30, 2002 4:37 PM
Subject: buffer overflow on whois (redhat linux 7.0/7.1 on i686)
>
> Hi All,
>
> Can anyone reproduce the following errors?
> I got them in 3 Redhat 7.0/7.1 (i686) boxes. It is possibly due to a
> buffer overflow. I have upgraded the linux boxes to the latest glibc
> available (glibc-2.2.4-19.3). It didnt happen on red hat 7.2 though.
>
>
> $whois
> syntax: whois [-v] [-r] [-h server] [-p port] [--] query[@server[:port]]
> default server is whois.crsnic.net
>
> $whois -r
> Segmentation fault (core dumped)
> $whois -v
> Segmentation fault (core dumped)
> $whois -h
> Segmentation fault (core dumped)
> $whois -p
> Segmentation fault (core dumped)
>
> Apparently the problem is a NULL call to strlen() in glibc.
> Analysing the cores generated by whois i got the following errors:
>
> #0 0x400bf071 in strlen () from /lib/i686/libc.so.6
>
>
>
> $gdb whois core
> GNU gdb 5.0rh-5 Red Hat Linux 7.1
> Copyright 2001 Free Software Foundation, Inc.
> GDB is free software, covered by the GNU General Public License, and you
are
> welcome to change it and/or distribute copies of it under certain
conditions.
> Type "show copying" to see the conditions.
> There is absolutely no warranty for GDB. Type "show warranty" for
details.
> This GDB was configured as "i386-redhat-linux"...(no debugging symbols
found)...
> Core was generated by `whois -p'.
> Program terminated with signal 11, Segmentation fault.
> Reading symbols from /lib/libresolv.so.2...done.
> Loaded symbols for /lib/libresolv.so.2
> Reading symbols from /lib/i686/libc.so.6...done.
> Loaded symbols for /lib/i686/libc.so.6
> Reading symbols from /lib/ld-linux.so.2...done.
> Loaded symbols for /lib/ld-linux.so.2
> #0 0x400bf071 in strlen () from /lib/i686/libc.so.6
>
>
> --
> Eduardo Damato
> Network Analyst - GRC/UNESP
> email: damato@unesp.br
>
>
>
- Previous message: Bruno Mosconi: "Re: Enumerating users on a Domino webserver"
- Next in thread: ladd harris: "Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
