Incidents
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Suspicious files in /tmp Jun 19 2007 07:00AM
Michal Zalewski (lcamtuf dione ids pl)
On Mon, 18 Jun 2007, Matt D. Harris wrote:

> A lot of times in an exploit scenario, you don't have access to stdin.

Why not? If you can call execve, you can go for sh -c 'echo "foo()" | perl
-' instead of calling perl interpreter directly. Or use pipe() + fork().

> While the script could still be...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus