BugTraq
Remote pine Denial of Service Nov 07 2002 01:16PM
Linus Sj÷berg (lsjoberg aland net) (1 replies)
Re: Remote pine Denial of Service Nov 07 2002 04:54PM
Erik Parker (eparker mindsec com) (1 replies)
Re: Remote pine Denial of Service Nov 09 2002 07:56AM
Erik Parker (eparker mindsec com)

I take that back.. This DOES test positive on Solaris 8 x86, however not in
the inbox for some reason..

If you have the message in your sent-mail, it dumps pine with:

12758: lseek(6, 9616959, SEEK_SET) = 9616959
12758: read(6, " D a t e : T h u , 7".., 584) = 584
12758: Incurred fault #6, FLTBOUNDS %pc = 0xDF9C636A
12758: siginfo: SIGSEGV SEGV_MAPERR addr=0x73646E71
12758: Received signal #11, SIGSEGV [caught]
12758: siginfo: SIGSEGV SEGV_MAPERR addr=0x73646E71
12758: sigaction(SIGILL, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGTRAP, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGEMT, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGBUS, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGSEGV, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGSYS, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGWINCH, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGQUIT, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGTSTP, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGHUP, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGALRM, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGTERM, 0x08045ADC, 0x08045B30) = 0
12758: sigaction(SIGINT, 0x08045ADC, 0x08045B30) = 0
12758: time() = 1036828313
12758: time() = 1036828313
12758: Incurred fault #6, FLTBOUNDS %pc = 0xDF9C5B67
12758: siginfo: SIGSEGV SEGV_MAPERR addr=0x00006D6F
12758: Received signal #11, SIGSEGV [default]
12758: siginfo: SIGSEGV SEGV_MAPERR addr=0x00006D6F
12758: *** process killed ***

---
Erik Parker
---

> Erik Parker (eparker (at) mindsec (dot) com [email concealed]) composed on Nov 7, 2002:

>
> Tests positive on Redhat 7.3, False on Solaris x86
>
>
> > Linus Sjöberg (lsjoberg (at) aland (dot) net [email concealed]) composed today:
>
> > Security Advisory
> >
> > 23rd October 2002
> >
> > Remote pine version 4.44 denial of service
> >
> > Name: Pine version 4.44
> > Arch: Redhat 7.2 i386
> > Severity: Medium
> > Vendor URL: http://www.washington.edu/pine/
> > Author: Linus Sjöberg (lsjoberg (at) aland (dot) net [email concealed])
> > Vendor notified: 14:th October 2002
> > Vendor response: 14:th October 2002
> > Vendor fix: ??????
>
>
>

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus