Vulnerability Development mailing list archives
Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) - Remote
From: "Yvan Laverdiere" <laverdiy () videotron ca>
Date: Mon, 10 Sep 2001 15:22:28 -0400
I gave it a try, this time remotely by throwing a bundle of paper at the machine but I could not establish a connection between the paper and the shredder... Yvan ----- Original Message ----- From: "Xyntrix" <xyntrix () bitz org> To: "w1re p4ir" <w1rep4ir () disinfo net> Cc: <vuln-dev () securityfocus com> Sent: Monday, September 10, 2001 1:47 PM Subject: Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!)
On Mon, Sep 10, 2001 at 04:59 PM, w1re p4ir <w1rep4ir () disinfo net> said:A vulnerability has been found in my companies Paper Shedder. When
putting more than the recommened paper into the shedder (but not enough for a DoS) It allows the paper to go in. This could cause abirtary paper to allowed in side the shredder. This vulnerability has been discovered on Sept. 10. Achiever Has not been notified of this particular vulnerability.
________________________________________________________ The Best News Source On The Web - http://www.disinfo.comi tried to replicate this problem and could not get it to work. i am currently using a stable version of a paper shredder. i also tried this on a post-processing paper shredding device where a third-party carries out the shredding process, and that also failed to acvieve a stack overflow. what size of paper are you using? i believe i am using 24lb, legal size. ----- _______________________________________ Mike Mclane | xyntrix at bitz dot org | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Current thread:
- Achiever CSS-50 Personal Paper Shedder Buffer Overflow (Humor) w1re p4ir (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Xyntrix (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Steve (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) mrcdz (Sep 10)
- RE: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Robert Hagen (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Matthew Leeds (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Steve (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Justin C. Darby (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) - Remote Yvan Laverdiere (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (!) Xyntrix (Sep 10)
- Re: Achiever CSS-50 Personal Paper Shedder Buffer Overflow (Humor) Blue Boar (Sep 10)