Full Disclosure mailing list archives
Re: cftp 0.12 (readrc) Local buffer overflow vulnerability
From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Tue, 20 Mar 2007 17:23:10 +0300
Dear starcadi, A very effective way for user to exploit himself. How can you elevate your privileges this way? Is cftp suid? --Tuesday, March 20, 2007, 12:52:13 AM, you wrote to full-disclosure () lists grok org uk: s> Description: s> CFTP is Comfortable FTP, a full screen ftp client. s> Proof of concept: s> $ export HOME=`perl -e "print 'A'x8200"` s> $ cftp s> Segmentation fault s> $ -- ~/ZARAZA http://securityvulns.com/ Неприятности начнутся в восемь. (Твен) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- cftp 0.12 (readrc) Local buffer overflow vulnerability starcadi (Mar 19)
- Re: cftp 0.12 (readrc) Local buffer overflow vulnerability 3APA3A (Mar 20)