Bugtraq mailing list archives

pine/pico vt control characters bug [2]

From: lcamtuf () BOSS STASZIC WAW PL (Michal Zalewski)
Date: Sat, 25 Apr 1998 19:05:41 +0200


/* back to the 0x9B char */

Just as an addendum - risk of '0x9B bug' depends mainly on terminal
capabilities - while 'dumb' terminals are mostly safe (maybe except DoS
attacks, destruction of display, etc) - smarter ones are vunerable to
things like parsing arbitrary strings as typed from keyboard, changing
terminal options, writing files and executing arbitrary code (see
'capabilities' section on termcap manpage, then termcap entry for your
terminal type). Most of them, if implemented, are available via 0x9B
control character.

_______________________________________________________________________
Michal Zalewski [lcamtuf () boss staszic waw pl] <= finger for pub PGP key
Iterowac jest rzecza ludzka, wykonywac rekursywnie - boska [P. Deutsch]
[echo "\$0&\$0">_;chmod +x _;./_] <=------=> [tel +48 (0) 22 813 25 86]

Current thread:

pine/pico vt control characters bug Michal Zalewski (Apr 25)
- Special Report On Buffer Overfolws John Vranesevich (Apr 25)
- pine/pico vt control characters bug [2] Michal Zalewski (Apr 25)
- feature Re: pine/pico vt control characters bug GvS One (Apr 25)
  - Re: feature Re: pine/pico vt control characters bug Michal Zalewski (Apr 25)
  - Re: feature Re: pine/pico vt control characters bug Matt Barrie (Apr 25)
  - Leveraging search engines against Frontpage enabled servers frank darden (Apr 26)
- <Possible follow-ups>
- Re: pine/pico vt control characters bug der Mouse (Apr 25)