Bugtraq mailing list archives
Re: Cert Advisory 2002-03 and HP JetDirect
From: "david evlis reign" <davidreign () hotmail com>
Date: Fri, 22 Feb 2002 10:14:20 +0000
As an interesting side note, Ethereal (a popular open source sniffer / traffic analyzer) crashes every time it sees this packet also. It gives the error "GLib-ERROR **: could not allocate -1 bytes aborting...". this caught my attention for two reasons. my probably wrong explantion for this is the following: 1) mangled packet sent, containing some large values (no idea what)2) ettercap recieves and processes this saying that int whatever = <large value from packet>
3) int returns unsigned, classic integer overflow style. 4) passed to malloc as an unsigned value, malloc shits itself. 5) ettercap spits out cant allocate <whatever> bytes. possibly exploitable (heap + int == hard ;)) someone prove me wrong _please_ davidr _________________________________________________________________ Chat with friends online, try MSN Messenger: http://messenger.msn.com
Current thread:
- Cert Advisory 2002-03 and HP JetDirect Information Security (Feb 19)
- Re: Cert Advisory 2002-03 and HP JetDirect Russell Fulton (Feb 20)
- Re: Cert Advisory 2002-03 and HP JetDirect Joshua Newton (Feb 20)
- <Possible follow-ups>
- Re: Cert Advisory 2002-03 and HP JetDirect david evlis reign (Feb 23)