Bugtraq mailing list archives

Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995

From: scorp () un kiev ua (Slava Kritov)
Date: Wed, 30 Aug 1995 15:58:08 +0300


Hi !



On Tue, 29 Aug 1995, Tim Rylance wrote:

       We have written an example exploit to overwrite syslog(3)'s
       internal buffer using SunOS sendmail(8).


Tried that on Alpha/DEC OSF 3.2
Max message size is 1600, if more - message just not get logged at all.
No troubles introduced.

On FreeBSD 1.1.5.1 - max size is ~2K, if more - program which send logs
rq coredumps on 11 sig.

;(

Free is free ... ;)

Best
        Slava Kritov
        Senior Internetwork Specialist
        UN Internet Project for Ukraine
        http://www.un.kiev.ua
        http://www.freenet.kiev.ua

Current thread:

Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Christian Wettergren (Aug 29)
- <Possible follow-ups>
- Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Perry E. Metzger (Aug 29)
- Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Slava Kritov (Aug 30)
- Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 der Mouse (Aug 31)
- Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Tim Scanlon (Sep 02)
  - Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Slava Kritov (Sep 05)
  - Discovery: Gain access to root on Linux via NIS Ken Weaverling (Sep 05)
    - Re: Discovery: Gain access to root on Linux via NIS Alan Hannan (Sep 07)
- Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Neil Woods (Sep 04)
  - Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 System Administrator (Sep 11)
    - Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Neil Woods (Sep 12)
    - Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 Karl Strickland (Sep 13)
    - Re: [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 System Administrator (Sep 14)

(Thread continues...)