Bugtraq mailing list archives

Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit

From: alan () lxorguk ukuu org uk (Alan Cox)
Date: Tue, 19 Nov 1996 19:08:35 +0000

The exploit does not work on my 2.5.1 Ultra-1.  Presumably this is
just a matter of getting the machine code right for the platform. ;)


According to Dave Miller (Linux sparc guru) the I & D caches on the ultra
are not coherent, so you'll need to find a way to flush the I cache.

Alan

Current thread:

BOOTP/DHCP security, (continued)
- - - BOOTP/DHCP security itudps (Nov 26)
    - Re: BOOTP/DHCP security Alan Cox (Nov 27)
    - Re: A security issue of a different kind. Jon Peatfield (Nov 27)
    - Re: A security issue of a different kind. Piete Brooks (Nov 27)
    - Major Security Vulnerabilities in Remote CD Databases David J. Meltzer (Nov 26)
    - Re: Major Security Vulnerabilities in Remote CD Databases itudps (Nov 26)
    - lquerypv fix Troy Bollinger (Nov 25)
    - HP Bug of the Week! Aleph One (Nov 23)
    - HP Bug of the Week: OFS Aleph One (Nov 23)
    - Serious BIND resolver problem. Oliver Friedrichs (Nov 18)
    - Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Alan Cox (Nov 19)
    - Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Joe Zbiciak (Nov 19)
    - Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Tim Newsham (Nov 20)
  - Re: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2). Jim Dennis (Nov 17)
  - big fat gethostbyname() hole Pete Ashdown (Nov 18)
- sendmail-8.8.3 released Jared Mauch (Nov 17)