Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: some things to play with

From: vlad () SANDY RU (Vladimir Dubrovin)
Date: Fri, 14 Jul 2000 13:08:01 +0400

Hello Firstname Lastname,

13.07.00 13:39, you wrote: some things to play with;

F> enemy:~# cat 2b.c
F> #include <unistd.h>
F> int main(int argc, char **argv) {
F>     if (argc < 2)
F>         exit(-1);
F>     execvp(argv[1], &argv[2]);
F> }

F> null pointer crashes in str(r)chr(), basename, ...
F> weird behaviour in some other privileged programs (argc = 0)...
F> enemy:~# ./2b /usr/bin/gpasswd

It's just a buggy code of 2b.c. It must be:

int main(int argc, char **argv) {
    if (argc < 3)
        exit(-1);
    execvp(argv[1], &argv[2]);
}

F> Segmentation fault (core dumped)

   Vladimir Dubrovin                  Sandy, ISP
    Sandy CCd chief               Customers Care dept
  http://www.sandy.ru           Nizhny Novgorod, Russia

http://www.security.nnov.ru
Previous By Date Next
Previous By Thread Next

Current thread: