Re: Re: Buffer Overflow in ActivePerl?

["Volker Tanger" <volker.tanger () detewe de>]

On Tue, 18 May 2004 11:03:40 +0200 Axel Beckert <beckert () ecos de> wrote:
> Am Mon, May 17, 2004 at 10:23:56PM +0200, Oliver () greyhat de schrieb:
> > i played around with ActiveState's ActivePerl for Win32, and crashed
> > Perl.exe with the following command:
> >
> > perl -e "$a="A" x 256; system($a)"

Your command line parameters for perl.exe are probably:
        1.)     -e
        2.)     "$a="
        3.)     A
        4.)     " x 256; system($a)"

Thus are you sure you get $A set with 256 "A"s?

Are you crashing system() or perl.exe's command line parser?

Please define "crashed".

Bye

Volker Tanger
ITK Security

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html