Bugtraq mailing list archives

SigSev -> Security Hole

From: mouse () finance econ su oz au (Tim Smithers)
Date: Wed, 21 Aug 1996 11:22:29 +1000


In regards to the overrunning of arrays,
is the sigsev, core dumped a true indication of
an exploitable security hole?

I think quite a few suid binaries exhibit this behaviour
but how many are exploitable?

        -mouse
--
Tim Smithers.
DMouse Pty. Ltd.
ph: 019 910 195
e-mail: mouse () finance econ su oz au

( Perfection is a hobby many pursue,
         but few have a chance of success )

Current thread:

Re: libresolv+ bug, (continued)
- Re: libresolv+ bug der Mouse (Aug 19)
  - Re: libresolv+ bug Alan Cox (Aug 20)
  - Re: libresolv+ bug Thomas Ptacek (Aug 20)
    - Re: libresolv+ bug Julian Assange (Aug 21)
- Re: libresolv+ bug John Nemeth (Aug 20)
- Re: libresolv+ bug Andi Gutmans (Aug 20)
  - Re: libresolv+ bug Jon Lewis (Aug 20)
    - Re: libresolv+ bug Elliot Lee (Aug 20)
  - Re: libresolv+ bug Nick Andrew (Aug 20)
    - Re: libresolv+ bug Jon Lewis (Aug 20)
  - SigSev -> Security Hole Tim Smithers (Aug 20)
    - Re: SigSev -> Security Hole Brian Mitchell (Aug 20)
- Re: libresolv+ bug Don Lewis (Aug 20)
- Re: libresolv+ bug Zygo Blaxell (Aug 21)
- Re: libresolv+ bug Zygo Blaxell (Aug 21)
  - Re: libresolv+ bug Julian Assange (Aug 21)
  - Re: libresolv+ bug Thomas Ptacek (Aug 21)
    - Re: libresolv+ bug Nick Andrew (Aug 22)
    - Re: libresolv+ bug John Macdonald (Aug 22)
    - Re: libresolv+ bug David Holland (Aug 22)
    - Re: libresolv+ bug Zygo Blaxell (Aug 22)

(Thread continues...)