Full Disclosure mailing list archives

Re: ntpd stack evasion exploit

From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: Tue, 10 Jan 2006 20:39:49 +0100

!bSt bitwarz Security Team napisał(a):

/* ntpd remote root no-exec stack evasion spl0it
 * by m0sk0v


well... stolen code from my exploit (and advisory) published almost five
years ago on bugtraq. only comments and printfs where changed.

http://marc.theaimsgroup.com/?l=bugtraq&m=98642418618512&w=2

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE *
* JID: venglin () jabber atman pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

ntpd stack evasion exploit !bSt bitwarz Security Team (Jan 10)
- Re: ntpd stack evasion exploit Przemyslaw Frasunek (Jan 10)
  - Re: ntpd stack evasion exploit ad () heapoverflow com (Jan 10)
    - Re: ntpd stack evasion exploit Sean Crawford (Jan 10)
    - Re: ntpd stack evasion exploit George A. Theall (Jan 10)
    - Re: should have been..' How to Determine My System Vulnerabilities' Sean Crawford (Jan 10)
    - Re: should have been..' How to Determine My System Vulnerabilities' fok yo (Jan 11)
    - Re: ntpd stack evasion exploit Dave Korn (Jan 11)
    - Re: Re: ntpd stack evasion exploit Valdis . Kletnieks (Jan 11)
    - Re: Re: ntpd stack evasion exploit Dave Korn (Jan 12)
- Re: ntpd stack evasion exploit Dude VanWinkle (Jan 14)