BugTraq
RE: Solaris ld.so.1 buffer overflow Jul 30 2003 04:37PM
Rukshin, David (rukshin deshaw com) (1 replies)
Re: Solaris ld.so.1 buffer overflow Jul 30 2003 04:47PM
Jouko Pynnonen (jouko iki fi) (1 replies)


On Wed, Jul 30, 2003 at 12:37:44PM -0400, Rukshin, David wrote:
> Modify the command (you need to add a trailing slash) to be the following:
>
> LD_PRELOAD=/`perl -e 'print "A"x2000'`/ passwd
>
> and try it again.

That's right, my original message had a typo, the trailing slash was
missing. Thanks for noticing this, David. Without the slash nothing
special happens. My apologies,

--
Jouko Pynnonen http://iki.fi/jouko/
jouko (at) iki (dot) fi [email concealed]

[ reply ]
Re: Solaris ld.so.1 buffer overflow Jul 30 2003 05:46PM
cdowns (cdowns drippingdead com)


 

Privacy Statement
Copyright 2010, SecurityFocus