csh/tcsh vulnerability
From: Á¤ ÈÆ¿µ (dragory1@hotmail.com)Date: 06/27/02
- Previous message: Magnus Bodin: "Re: OpenSSH advisory"
- Next in thread: Valdis.Kletnieks@vt.edu: "Re: csh/tcsh vulnerability"
- Reply: Valdis.Kletnieks@vt.edu: "Re: csh/tcsh vulnerability"
- Reply: Idan l.: "Re: csh/tcsh vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Á¤ ÈÆ¿µ" <dragory1@hotmail.com> To: vuln-dev@securityfocus.com Date: Thu, 27 Jun 2002 03:41:57 +0000
OS : Solaris 8
[sf280r]#/home/dragory> bash
[dragory@sf280r dragory]$ export HOME=`perl -e 'print "x"x5000'`
[dragory@sf280r dragory]$ su
Password:(input correct password)
Segmentation Fault (core dumped)
[dragory@sf280r dragory]$ ls -l core
-rw------- 1 root 580464 Jun 27 12:29 core
[sf280r]#/home/dragory> gdb -q tcsh core
(no debugging symbols found)...Core was generated by `tcsh'.
Program terminated with signal 11, Segmentation Fault.
#0 0x29be4 in doglob ()
Is this vulnerable?
_________________________________________________________________
MSN Explorer°¡ ÀÖÀ¸¸é Hotmail »ç¿ëÀÌ ÈξÀ Æí¸®ÇØ Áý´Ï´Ù. Áö±Ý
http://explorer.msn.co.kr/ ¿¡¼ ¹«·á·Î ´Ù¿î·ÎµåÇϼ¼¿ä.
- Previous message: Magnus Bodin: "Re: OpenSSH advisory"
- Next in thread: Valdis.Kletnieks@vt.edu: "Re: csh/tcsh vulnerability"
- Reply: Valdis.Kletnieks@vt.edu: "Re: csh/tcsh vulnerability"
- Reply: Idan l.: "Re: csh/tcsh vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
