Vulnerability Development mailing list archives

Off By One on Red Hat Linux again

From: lavmarco () freemail it
Date: 29 Aug 2003 14:46:54 -0000


hi again,

i tested frame pointer overwrite vulnerability in redhat linux 7.0 & 7.1 too...but it
fails to overwrite LSB of EBP. This distros have gcc-2.96-54 and gcc-2.96-81; any ideas?

However a remote off by one exploit (rsyncd) worked successfully in red hat 7.1
and i don't understand because a local scenario fails.

I will test again FP overwrite in other distros (mandrake & suse) and i will inform you about
complete exploitation.

Thank u to Jose Ronnick for immediate response.

---------------------------------------------------------
Incontri: amicizie, relazioni, trasgressione
http://incontri.supereva.it/cgi-bin/index.chm?partner=904

messaggio inviato con Freemail by www.superEva.it
---------------------------------------------------------

Current thread:

Off By One on Red Hat Linux again lavmarco (Aug 29)
- <Possible follow-ups>
- Re: Off By One on Red Hat Linux again DownBload (Aug 30)