Bugtraq mailing list archives
pine/pico vt control characters bug [2]
From: lcamtuf () BOSS STASZIC WAW PL (Michal Zalewski)
Date: Sat, 25 Apr 1998 19:05:41 +0200
/* back to the 0x9B char */ Just as an addendum - risk of '0x9B bug' depends mainly on terminal capabilities - while 'dumb' terminals are mostly safe (maybe except DoS attacks, destruction of display, etc) - smarter ones are vunerable to things like parsing arbitrary strings as typed from keyboard, changing terminal options, writing files and executing arbitrary code (see 'capabilities' section on termcap manpage, then termcap entry for your terminal type). Most of them, if implemented, are available via 0x9B control character. _______________________________________________________________________ Michal Zalewski [lcamtuf () boss staszic waw pl] <= finger for pub PGP key Iterowac jest rzecza ludzka, wykonywac rekursywnie - boska [P. Deutsch] [echo "\$0&\$0">_;chmod +x _;./_] <=------=> [tel +48 (0) 22 813 25 86]
Current thread:
- pine/pico vt control characters bug Michal Zalewski (Apr 25)
- Special Report On Buffer Overfolws John Vranesevich (Apr 25)
- pine/pico vt control characters bug [2] Michal Zalewski (Apr 25)
- feature Re: pine/pico vt control characters bug GvS One (Apr 25)
- Re: feature Re: pine/pico vt control characters bug Michal Zalewski (Apr 25)
- Re: feature Re: pine/pico vt control characters bug Matt Barrie (Apr 25)
- Leveraging search engines against Frontpage enabled servers frank darden (Apr 26)
- <Possible follow-ups>
- Re: pine/pico vt control characters bug der Mouse (Apr 25)