Bugtraq mailing list archives
Re: Buffer Overflow in ActivePerl ?
From: rich.sf () lclogic com
Date: Mon, 17 May 2004 17:58:57 -0700 (PDT)
Reproduced with 5.6.1/win95. On Mon, 17 May 2004, Oliver () greyhat de wrote:
Date: Mon, 17 May 2004 22:23:56 +0200 From: "Oliver () greyhat de" <Oliver () greyhat de> To: full-disclosure () lists netsys com Cc: bugtraq () securityfocus com Subject: Buffer Overflow in ActivePerl ? hi folks, i played around with ActiveState's ActivePerl for Win32, and crashed Perl.exe with the following command: perl -e "$a="A" x 256; system($a)" I wonder if this bug isnt known?!? Because system() is a very common command.... Can anybody reproduce this? I put together a little advisory on my website, including version information and a debugger output (Drwatson): http://www.oliverkarow.de/research/ActivePerlSystemBOF.txt PS: Due to travel activity, i will not be able to respond to mails within the next 8 days! Regards, Oliver
Current thread:
- Buffer Overflow in ActivePerl ? Oliver () greyhat de (May 17)
- Re: Buffer Overflow in ActivePerl ? rich . sf (May 18)
- RE: [Full-Disclosure] Re: Buffer Overflow in ActivePerl ? Bill Royds (May 18)
- Re: Buffer Overflow in ActivePerl ? Josh Tolley (May 18)
- Re: Buffer Overflow in ActivePerl? Axel Beckert (May 18)
- Re: Buffer Overflow in ActivePerl ? Nick FitzGerald (May 18)
- <Possible follow-ups>
- Re: Buffer Overflow in ActivePerl ? noderat (May 18)
- RE: Buffer Overflow in ActivePerl ? Drew Copley (May 18)
- Re: Buffer Overflow in ActivePerl ? David Cantrell (May 19)
- Re: Buffer Overflow in ActivePerl ? David Ahmad (May 19)
- Re: Buffer Overflow in ActivePerl ? David Cantrell (May 19)
- Re: Buffer Overflow in ActivePerl ? rich . sf (May 18)