Bugtraq mailing list archives
possible remote buffer overflow in atftpd
From: "Rick" <rikul () interbee com>
Date: Wed, 4 Jun 2003 16:11:50 -0500
Hello, There is possible remote buffer overflow in atftpd. It has to do with length of filename which client sends to atftpd server. If you send filename over ~253 bytes, it crashes with segfault. When I attach to process with gdb I can see it trying to run instruction from EIP 0x41414141. That cant be a good thing. I've tested this on debian woody. I've creating proof of concept exploit for it but having few troubles :) later, Rick Patel
Current thread:
- possible remote buffer overflow in atftpd Rick (Jun 04)