Vulnerability Development mailing list archives
Re: Administrivia: List Announcement
From: "Edinelson Keiji Shimokawa" <dev () pop com br>
Date: Wed, 14 May 2003 10:21:28 -0300
Benjamin A. Okopnik disse:
l1 = strlen(p1); s1 = sizeof(p1); l2 = strlen(p2); s2 = sizeof(p2);
I think that there we need to code:
l1 = strlen(buf1); s1 = sizeof(buf1); l2 = strlen(buf2); s2 = sizeof(buf2);
but, I coded and the results: # ./a.out `perl -e 'print "A" x 251;print " "; print "B" x 251'` strlen1: 251 sizeof1: 4 strlen2: 251 sizeof2: 4 # ./a.out `perl -e 'print "A" x 252;print " "; print "B" x 251'` strlen1: 254 sizeof1: 4 strlen2: 251 sizeof2: 4 # ./a.out `perl -e 'print "A" x 253;print " "; print "B" x 251'` Segmentation fault # ./a.out `perl -e 'print "A" x 252;print " "; print "B" x 252'` strlen1: 254 sizeof1: 4 strlen2: 254 sizeof2: 4 # ./a.out `perl -e 'print "A" x 251;print " "; print "B" x 252'` strlen1: 251 sizeof1: 4 strlen2: 254 sizeof2: 4 # ./a.out `perl -e 'print "A" x 252;print " "; print "B" x 253'` strlen1: 254 sizeof1: 4 strlen2: 254 sizeof2: 4 # ./a.out `perl -e 'print "A" x 252;print " "; print "B" x 254'` strlen1: 254 sizeof1: 4 strlen2: 254 sizeof2: 4 # ./a.out `perl -e 'print "A" x 252;print " "; print "B" x 255'` strlen1: 254 sizeof1: 4strlen2: 254 sizeof2: 4
mmm... it seems that buf2 overflowed 2 bytes. try other sizes for SIZE. I have tried 248 and 250. it's amazing that doesn't sigfaults.seems a very special condition.
Edinelson Keiji Shimokawa.A jedi prentice owned by Dark Force.
--POP. Nem parece internet grátis.
Seja POP você também! Acesse: http://www.pop.com.br/pop_discador.php e baixe o POPdiscador.
Current thread:
- Administrivia: List Announcement Dave McKinney (May 13)
- Re: Administrivia: List Announcement David Riley (May 13)
- Re: Administrivia: List Announcement Benjamin A. Okopnik (May 13)
- Re: Administrivia: List Announcement Edinelson Keiji Shimokawa (May 14)
- Re: Administrivia: List Announcement Benjamin A. Okopnik (May 13)
- Re: Administrivia: List Announcement Brian Hatch (May 13)
- Re: Administrivia: List Announcement Wojciech Purczynski (May 14)
- Re: Administrivia: List Announcement Luciano Miguel Ferreira Rocha (May 14)
- vulndev-1.c challenge (was Re: Administrivia: List Announcement) Bennett Todd (May 13)
- Re: Administrivia: List Announcement Bernie Cosell (May 13)
- Re: Administrivia: List Announcement Valdis . Kletnieks (May 15)
- partial analysis of vulndev-1.c David R. Piegdon (May 13)
- Re: partial analysis of vulndev-1.c Dana Epp (May 13)
- Re: partial analysis of vulndev-1.c master of chaos - lord of mean (May 13)
- RE: partial analysis of vulndev-1.c David Schwartz (May 13)
(Thread continues...)
- Re: Administrivia: List Announcement David Riley (May 13)