Vulnerability Development mailing list archives
Re: suid scotty (ntping) overflow
From: "Larry W. Cashdollar" <lwc () Vapid dhs org>
Date: Thu, 14 Jun 2001 18:44:38 -0400 (EDT)
To add to this, if the right shellcode is put in place, some that calls a setuid(0) my exploit should spit out a euid(0) shell. Should this migrate to the bugtraq list now? On Wed, 13 Jun 2001, Larry W. Cashdollar wrote:
Well anyway here is an exploit I was toying with. Perhaps someone with better overflow skills can tweak it a bit.
Current thread:
- suid scotty (ntping) overflow KF (Jun 13)
- Re: suid scotty (ntping) overflow Larry W. Cashdollar (Jun 14)
- Re: suid scotty (ntping) overflow Larry W. Cashdollar (Jun 15)
- Re: suid scotty (ntping) overflow Larry W. Cashdollar (Jun 14)