Bugtraq mailing list archives
Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities
From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: Fri, 24 Jun 2005 17:44:18 +0200
Przemyslaw Frasunek napisał(a):
Another vulnerability is heap corruption after malformed -s argument:
I've forgotten to provide an example: atari:root:/home/venglin# traceroute -s 1.1.1.1. 127.0.0.1 traceroute: 4.0.0.0 is an invalid IPv4 source address Segmentation fault (core dumped) -- * Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE * * JID: venglin () jabber atman pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *
Current thread:
- Solaris 10 /usr/sbin/traceroute vulnerabilities Przemyslaw Frasunek (Jun 24)
- Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities Przemyslaw Frasunek (Jun 24)
- Message not available
- Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities Przemyslaw Frasunek (Jun 24)
- Message not available
- Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities Przemyslaw Frasunek (Jun 24)
- Re: Solaris 10 /usr/sbin/traceroute vulnerabilities David T. Moraski II (Jun 24)
- Re: Solaris 10 /usr/sbin/traceroute vulnerabilities Fermín J. Serna (Jun 24)