[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Recursive directories.

To: Jason <jason@tacorp.com>
Subject: Re: Recursive directories.
From: CyberPsychotic <mlists@gizmo.kyrnet.kg>
Date: Mon, 25 Oct 1999 13:40:51 +0500 (KGT)
Cc: tech@openbsd.org

~ [root@Zirconium]
~ /home ls david/32113/k/
~ AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
~ AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
~ AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
~ AAAAAAAAA
~ 
~ 
~ [root@Zirconium]
~ /home rm -rf david
~ Segmentation fault (core dumped)

 Hmm.. what distro are you running? This looks like a security problem to
me. if your user would pull a correct shellcode into dirname, and if eip
would get overflowed (gdb rm rm.core, info registers), user could cause
you to execute code of his will. It obviously doesn't happen, since you
get core dump, but I'd be cautious about the thing anyway..

References:
- Recursive directories.
  - From: Jason <jason@tacorp.com>

Prev by Date: Re: pkg_info vs ssl26.tgz in snapshots/packages/i386
Next by Date: Re: Recursive directories.
Prev by thread: Re: Recursive directories.
Next by thread: Re: Recursive directories.
Index(es):
- Date
- Thread