Vulnerability Development mailing list archives
gnome-pilot 0.1.63
From: l0rt <simon () snosoft com>
Date: 15 Jan 2002 18:26:20 -0500
Werd, last one for today... ;o)
========================================================================
Program(s): gpilotd-control-applet
gpilot-applet
gpilotd
gpilotdcm-client
OS : Linux
DISTRO : RedHat 7.1
Issue : Core
Home Page : http://www.gnome.org/projects/gnome-pilot/
suid : No
sgid : No
Version : gnome-pilot 0.1.63
gnome-pilot is a package of utilities for the 3Com PalmPilot and is a
part of the GNOME project.
========================================================================
More $HOME testing.
sh-2.04$ export HOME=`perl -e ' print "A" x 10235'`
sh-2.04$ <program>
No I did not paste the execution results, to see them just set the above
env and call the binary.
Again, I do not have a lot of time to look into this today so I am
posting this. If anyone looks into this further before I do then please
keep me posted. Some of these show the same thing, some don't. If I
screwed up my post please bitch at me it was rushed.
core from: gpilot-applet
(gdb) info registers
eax 0x0 0
ecx 0x6 6
edx 0x405547d8 1079330776
ebx 0x4d8d 19853
esp 0xbfffcc8c 0xbfffcc8c
ebp 0xbfffccb8 0xbfffccb8
esi 0x4d8d 19853
edi 0x4054dec0 1079303872
eip 0x40629ae1 0x40629ae1
eflags 0x246 582
cs 0x23 35
ss 0x2b 43
ds 0x2b 43
es 0x2b 43
fs 0x2b 43
gs 0x2b 43
fctrl 0x0 0
fstat 0x0 0
ftag 0x0 0
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
(gdb) bt
#0 0x40629ae1 in __kill () from /lib/i686/libc.so.6
#1 0x4054976b in raise (sig=6) at signals.c:65
#2 0x4062b062 in abort () at ../sysdeps/generic/abort.c:88
#3 0x404fe6ce in g_logv (log_domain=0x4048e65b "Gnome",
log_level=G_LOG_LEVEL_ERROR,
format=0x4048e620 "Could not create per-user Gnome directory <%s> -
aborting\n", args1=0xbfffd26c) at gmessages.c:391
#4 0x404fe76f in g_log (log_domain=0x4048e65b "Gnome",
log_level=G_LOG_LEVEL_ERROR, format=0x4048e620 "Could not create
per-user Gnome directory <%s> - aborting\n")
at gmessages.c:408
#5 0x4048ca51 in create_user_gnome_directories () at gnomelib-init.c:44
#6 0x4048cc89 in gnomelib_init (app_id=0x804e327 "gpilot-applet",
app_version=0x804e502 "0.1.63") at gnomelib-init.c:183
#7 0x0804d79a in main (argc=1, argv=0xbfffd364) at pilot.c:1239
#8 0x40617627 in __libc_start_main (main=0x804d760 <main>, argc=1,
ubp_av=0xbfffd364, init=0x804a5e4 <_init>, fini=0x804dc10 <_fini>,
rtld_fini=0x4000dcd4 <_dl_fini>, stack_end=0xbfffd35c) at
../sysdeps/generic/libc-start.c:129
========================================================================
gploitd-control-applet
(gdb) info registers
eax 0x0 0
ecx 0x6 6
edx 0x406087d8 1080068056
ebx 0x4da4 19876
esp 0xbfffcacc 0xbfffcacc
ebp 0xbfffcaf8 0xbfffcaf8
esi 0x4da4 19876
edi 0x40601ec0 1080041152
eip 0x40671ae1 0x40671ae1
eflags 0x246 582
cs 0x23 35
ss 0x2b 43
ds 0x2b 43
es 0x2b 43
fs 0x2b 43
gs 0x2b 43
fctrl 0x0 0
fstat 0x0 0
ftag 0x0 0
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
(gdb) bt
#0 0x40671ae1 in __kill () from /lib/i686/libc.so.6
#1 0x405fd76b in raise (sig=6) at signals.c:65
#2 0x40673062 in abort () at ../sysdeps/generic/abort.c:88
#3 0x404ca6ce in g_logv (log_domain=0x4042865b "Gnome",
log_level=G_LOG_LEVEL_ERROR,
format=0x40428620 "Could not create per-user Gnome directory <%s> -
aborting\n", args1=0xbfffd0ac) at gmessages.c:391
#4 0x404ca76f in g_log (log_domain=0x4042865b "Gnome",
log_level=G_LOG_LEVEL_ERROR, format=0x40428620 "Could not create
per-user Gnome directory <%s> - aborting\n")
at gmessages.c:408
#5 0x40426a51 in create_user_gnome_directories () at gnomelib-init.c:44
#6 0x40426c89 in gnomelib_init (app_id=0x805760f "gpilot control
applet", app_version=0x8057608 "0.1.63") at gnomelib-init.c:183
#7 0x400fedec in gnome_init_with_popt_table (app_id=0x805760f "gpilot
control applet", app_version=0x8057608 "0.1.63", argc=1,
argv=0xbfffd344, options=0xbfffd280,
flags=0, return_ctx=0x0) at gnome-init.c:442
#8 0x4051b91f in gnome_CORBA_init_with_popt_table (app_id=0x805760f
"gpilot control applet", app_version=0x8057608 "0.1.63",
argc=0xbfffd208, argv=0xbfffd344,
options=0xbfffd280, popt_flags=0, return_ctx=0x0,
gnorba_flags=GNORBA_INIT_SERVER_FUNC, ev=0x40091c44) at orbitgnome.c:98
#9 0x4008d8b1 in capplet_widget_corba_init (app_id=0x805760f "gpilot
control applet", app_version=0x8057608 "0.1.63", argc=0xbfffd208,
argv=0xbfffd344,
options=0xbfffd280, flags=0, return_ctx=0x0) at
capplet-widget-libs.c:238
#10 0x4008d04d in gnome_capplet_init (app_id=0x805760f "gpilot control
applet", app_version=0x8057608 "0.1.63", argc=1, argv=0xbfffd344,
options=0xbfffd280, flags=0,
return_ctx=0x0) at capplet-widget.c:218
#11 0x0804d148 in main (argc=1, argv=0xbfffd344) at
gpilotd-control-applet.c:105
#12 0x4065f627 in __libc_start_main (main=0x804d01c <main>, argc=1,
ubp_av=0xbfffd344, init=0x804c1f8 <_init>, fini=0x8057570 <_fini>,
rtld_fini=0x4000dcd4 <_dl_fini>, stack_end=0xbfffd33c) at
../sysdeps/generic/libc-start.c:129
========================================================================
gpilotd
(gdb) info registers
eax 0x0 0
ecx 0x6 6
edx 0x405b97d8 1079744472
ebx 0x4da9 19881
esp 0xbfffcbec 0xbfffcbec
ebp 0xbfffcc18 0xbfffcc18
esi 0x4da9 19881
edi 0x405b2ec0 1079717568
eip 0x40622ae1 0x40622ae1
eflags 0x246 582
cs 0x23 35gnome-pilot 0.1.63
ss 0x2b 43
ds 0x2b 43
es 0x2b 43
fs 0x2b 43
gs 0x2b 43
fctrl 0x37f 895
fstat 0x0 0
ftag 0x917c 37244
fiseg 0x9d08 40200
fioff 0x23 35
foseg 0x1f80 8064
fooff 0x2b 43
fop 0xd 13
(gdb) bt
#0 0x40622ae1 in __kill () from /lib/i686/libc.so.6
#1 0x405ae76b in raise (sig=6) at signals.c:65
#2 0x40624062 in abort () at ../sysdeps/generic/abort.c:88
#3 0x400ce6ce in g_logv (log_domain=0x4012b65b "Gnome",
log_level=G_LOG_LEVEL_ERROR,
format=0x4012b620 "Could not create per-user Gnome directory <%s> -
aborting\n", args1=0xbfffd1cc) at gmessages.c:391
#4 0x400ce76f in g_log (log_domain=0x4012b65b "Gnome",
log_level=G_LOG_LEVEL_ERROR, format=0x4012b620 "Could not create
per-user Gnome directory <%s> - aborting\n")
at gmessages.c:408
#5 0x40129a51 in create_user_gnome_directories () at gnomelib-init.c:44
#6 0x40129c89 in gnomelib_init (app_id=0x806bacc "gnome-pilot",
app_version=0x806bac5 "0.1.63") at gnomelib-init.c:183
#7 0x40265dec in gnome_init_with_popt_table (app_id=0x806bacc
"gnome-pilot", app_version=0x806bac5 "0.1.63", argc=1, argv=0xbfffd374,
options=0x0, flags=0,
return_ctx=0x0) at gnome-init.c:442
#8 0x40265f04 in gnome_init (app_id=0x806bacc "gnome-pilot",
app_version=0x806bac5 "0.1.63", argc=1, argv=0xbfffd374) at
gnome-init.c:490
#9 0x401f5899 in gnome_CORBA_init (app_id=0x806bacc "gnome-pilot",
app_version=0x806bac5 "0.1.63", argc=0xbfffd310, argv=0xbfffd374,
gnorba_flags=GNORBA_INIT_SERVER_FUNC, ev=0x806dc6c) at
orbitgnome.c:46
#10 0x08065c61 in gpilotd_corba_init (argc=0xbfffd310, argv=0xbfffd374,
context=0xbfffd304) at orbit_daemon_glue.c:2077
#11 0x0805e261 in main (argc=1, argv=0xbfffd374) at gpilotd.c:1111
#12 0x40610627 in __libc_start_main (main=0x805e1ec <main>, argc=1,
ubp_av=0xbfffd374, init=0x804e568 <_init>, fini=0x8067950 <_fini>,
rtld_fini=0x4000dcd4 <_dl_fini>, stack_end=0xbfffd36c) at
../sysdeps/generic/libc-start.c:129
(gdb)
========================================================================
gpilotdcm-client
(gdb) info registers
eax 0x0 0
ecx 0x6 6
edx 0x405747d8 1079461848
ebx 0x4dac 19884
esp 0xbfffcc5c 0xbfffcc5c
ebp 0xbfffcc88 0xbfffcc88
esi 0x4dac 19884
edi 0x4056dec0 1079434944
eip 0x40622ae1 0x40622ae1
eflags 0x246 582
cs 0x23 35
ss 0x2b 43
ds 0x2b 43
es 0x2b 43
fs 0x2b 43
gs 0x2b 43
fctrl 0x0 0gnome-pilot 0.1.63
fstat 0x0 0
ftag 0x0 0
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
(gdb)bt
#0 0x40622ae1 in __kill () from /lib/i686/libc.so.6
#1 0x4056976b in raise (sig=6) at signals.c:65
#2 0x40624062 in abort () at ../sysdeps/generic/abort.c:88
#3 0x400bb6ce in g_logv (log_domain=0x404a665b "Gnome",
log_level=G_LOG_LEVEL_ERROR,
format=0x404a6620 "Could not create per-user Gnome directory <%s> -
aborting\n", args1=0xbfffd23c) at gmessages.c:391
#4 0x400bb76f in g_log (log_domain=0x404a665b "Gnome",
log_level=G_LOG_LEVEL_ERROR, format=0x404a6620 "Could not create
per-user Gnome directory <%s> - aborting\n")
at gmessages.c:408
#5 0x404a4a51 in create_user_gnome_directories () at gnomelib-init.c:44
#6 0x404a4c89 in gnomelib_init (app_id=0x804c16e "gpilotdcm-client",
app_version=0x804c16a "1.0") at gnomelib-init.c:183
#7 0x4017cdec in gnome_init_with_popt_table (app_id=0x804c16e
"gpilotdcm-client", app_version=0x804c16a "1.0", argc=1,
argv=0xbfffd354, options=0x804bd00, flags=0,
return_ctx=0xbfffd2dc) at gnome-init.c:442
#8 0x0804a187 in main (argc=1, argv=0xbfffd354) at
gpilotdcm-client.c:105
#9 0x40610627 in __libc_start_main (main=0x804a138 <main>, argc=1,
ubp_av=0xbfffd354, init=0x8049988 <_init>, fini=0x804bcb0 <_fini>,
rtld_fini=0x4000dcd4 <_dl_fini>, stack_end=0xbfffd34c) at
../sysdeps/generic/libc-start.c:129
(gdb)
--
-l0rt-
Strategic Reconnaissance Team
Team Key ID: ACFCBD01
l0rt Key ID: 47BF3F87
------------------------------------------
"That secret you've been guarding, isn't."
Attachment:
_bin
Description:
Current thread:
- gnome-pilot 0.1.63 l0rt (Jan 15)