Vulnerability Development mailing list archives

Re: Local root through vulnerability in ping on linux.

From: Hue-Bond <hue () CYBERCHAT2000 COM>
Date: Mon, 21 Aug 2000 18:06:28 +0200

El lunes 21 de agosto de 2000 a la(s) 10:26:34 +0200, Michal Zalewski contaba:


What about 'traceroute -g 127.0.0.1 127.0.0.1' and other combinations
(depending on DNS entry and IP number representation, you can cause many
interesting memory dumps or some SEGVs on RH 6.2 Linux box and many other
boxes as well)?


         Yes, certainly. This is a Debian 2.2:

$ /usr/sbin/traceroute -g 127.0.0.1 127.0.0.1
traceroute to  (127.0.0.1), 30 hops max, 46 byte packets
traceroute: sendto: Argumento inválido
 1 traceroute: wrote WUJ¡9å 46 _ =1

         After this,  the chars in screen  got scrambled as if  you type
     ^V^N^M at the shell prompt. traceroute version 1.4a5-2 installed.

lcamtuf () tpi pl


-- 
 Just do it

David Serrano <cyberchat2000.com@hue>            Linux Registered User #87069
Hi! I'm a .signature virus! Copy me into your ~/.signature to help me spread!

Attachment: _bin
Description:

Current thread:

Re: Local root through vulnerability in ping on linux., (continued)
- - - Re: Local root through vulnerability in ping on linux. PatrickM (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Martin MaD Douda (Aug 21)
- Re: Local root through vulnerability in ping on linux. Misa (Aug 21)
- Re: Local root through vulnerability in ping on linux. Goense, Jacob (Aug 20)
  - Re: Local root through vulnerability in ping on linux. Joe User (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Rodrigo Barbosa (aka morcego) (Aug 21)
  - Re: Local root through vulnerability in ping on linux. Murvai-Buzogany Laszlo (Aug 21)
  - Re: Local root through vulnerability in ping on linux. Michal Zalewski (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Daniel Jacobowitz (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
    - Re: Local root through vulnerability in ping on linux. Hue-Bond (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Ronald Huizer (Aug 22)
    - Re: Local root through vulnerability in ping on linux. geoff (Aug 22)
    - Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
    - Re: Local root through vulnerability in ping on linux. Michal Zalewski (Aug 22)
    - Re: Local root through vulnerability in ping on linux. Matt Wilson (Aug 23)
  - Re: Local root through vulnerability in ping on linux. Matthew Wilson (Aug 21)
- Re: Local root through vulnerability in ping on linux. Vitaly McLain (Aug 21)
  - Re: Local root through vulnerability in ping on linux. mmurray (Aug 21)
    - Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
    - Re: Local root through vulnerability in ping on linux. Daniel Roesen (Aug 22)

(Thread continues...)