Vulnerability Development mailing list archives

Re: Java and buffer overflows

From: Rafael Anschau <rhanscha () terra com br>
Date: Tue, 25 Jun 2002 19:41:04 -0300

I read in phrack that the perl interpreter will execute a progam if given a code
like fopen("cat /etc/passwd|") (due to an internal parsing error of the character |)

Java virtual machine may be vulnerable to bugs such as this one. Has anyone ever
read anything on it ? Has anyone ever read java's VM's code ?


[]'s

Woody

I heard thatt java is  invulnerable to bofs 
Has anyone succefully exploited a bof in java ?

[]'s

Woody


I was wondering if code written in JAVA(or .NET) is vulnerable to buffer overflows.
If yes,what are the differences in the proccess of exploiting?
Any online source?


Thanks


-- 
Rafael Anschau

Current thread:

Re: Java and buffer overflows, (continued)
- - Re: Java and buffer overflows Branko Ivanovic (Jun 26)
  - Re: Java and buffer overflows Nelson Sampaio Araujo Junior (Jun 26)
    - Re: Java and buffer overflows Rafael Anschau (Jun 26)
    - Re: Java and buffer overflows Dave Aitel (Jun 26)
    - Re: Java and buffer overflows KF (Jun 27)
    - Re: Java and buffer overflows Dave Aitel (Jun 27)
    - RE: Java and buffer overflows Zacharias Pigadas (Jun 28)
    - JNI and buffer overflows (was java and buffer overflows) KF (Jun 28)
    - Re: JNI and buffer overflows (was java and buffer overflows) KF (Jun 28)
    - Re: JNI and buffer overflows (was java and buffer overflows) KF (Jun 28)
  - Re: Java and buffer overflows Rafael Anschau (Jun 26)
    - Re: Java and buffer overflows Loki (Jun 26)
  - Re: Java and buffer overflows Edsel Adap (Jun 26)
- Re: Java and buffer overflows Joe Testa (Jun 26)