Full Disclosure mailing list archives

Re: format strings on HP-UX

From: KF <dotslash () snosoft com>
Date: Mon, 20 Jan 2003 11:51:49 -0500

I am going to say yes they are exploitable.... I have not 100% finishedmy exploit for SITE EXEC on HPUX ftpd but I have definately been able to"redirect the flow of execution". So far nothing special has beenrequired except to remember you are on BigEndian hardware...

-KF



bt () delfi lt wrote:

I don't know if this question is applicable to this list, however :

Are they exploitable?

I was looking for a format strings exploit on HP-UX,but couldn't find
any. Maybe because they are not exploitable???If they are,I would

appreaciate very much if anyone could provide some information aboutthat.


Thank you in advance,

bt

<--------------------===========================-------------------->
Siusk sms zinute su kodu 332391 i 1322
ir gauk Gintare: Boruzele septyntaske melodija i savo Nokia
Tai kainuos 1.95 Lt. Logotipai ir melodijos: http://sms.delfi.lt/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

format strings on HP-UX bt (Jan 20)
- Re: format strings on HP-UX KF (Jan 20)
- Re: format strings on HP-UX Bruce Ediger (Jan 20)