Bugtraq mailing list archives
Re: OpenVMS fingerd remote stack overflow
From: Alexander Sotirov <alex () sotirov net>
Date: Thu, 7 Aug 2008 10:40:16 -0700
On Thu, Aug 07, 2008 at 12:08:53AM +0100, Shaun Colley wrote:
The MultiNet finger service runs on port 79 by default (like other finger servers) and takes a username to query. A long string (~250+ or so bytes) will cause a stack overflow, giving control of a saved return address and hence the program counter (PC).
Hahahaha, welcome to 1988! Alex
Current thread:
- OpenVMS fingerd remote stack overflow Shaun Colley (Aug 07)
- Re: OpenVMS fingerd remote stack overflow Alexander Sotirov (Aug 07)
- Re: OpenVMS fingerd remote stack overflow Tim Newsham (Aug 08)
- Re: OpenVMS fingerd remote stack overflow Kevin Finisterre (lists) (Aug 07)
- Re: OpenVMS fingerd remote stack overflow mlbugtraq (Aug 07)
- Re: OpenVMS fingerd remote stack overflow Alexander Sotirov (Aug 07)