Bugtraq mailing list archives

Re: pnserver exploit..

From: angelos () INCREDIBLE COM (Angelos Karageorgiou)
Date: Fri, 16 Jan 1998 11:02:04 +0200


On Thu, 15 Jan 1998, Aleph One wrote:


It seems that the pnserver bug was different than first thought.  The
telnet client sends 6 characters that crash the server when its own
maxbuffer is reached.  Here is a working exploit.


Also trashes
RealVideo Server (c) 1995-1997, RealNetworks (tm) Inc.
All Rights Reserved
Version:        5.0-rvserver-build-262
Platform: Linux 1.2.x
Revision: $Revision: 1.94.2.176 $ $Date: 1997/11/23 05:18:48 $


                                   ____________________________________________
                                                      http://www.incredible.com
                                                     E-mail:info () incredible com

                                     Áðßóôåõôá Äßêôõá       Incredible Networks
                                   ôçë: (1) 92 12 312        tel +30 1 921 2312
                                   fax: (1) 92 12 314        fax:+30 1 921 2314

Current thread:

pbomb'ing SSH on a FreeBSD box., (continued)
- - - pbomb'ing SSH on a FreeBSD box. Jeff Johnson (Jan 15)
    - Re: pbomb'ing SSH on a FreeBSD box. FrontLine Assembly (Jan 17)
    - Re: DoS attack: apache (& other) .htaccess Authentication Dean Gaudet (Jan 16)
    - Re: GCC 2.7.? /tmp files dichro-bugtraq () RCPT TO (Jan 17)
    - Re: GCC 2.7.? /tmp files Zack Weinberg (Jan 18)
    - Re: GCC 2.7.? /tmp files John Gotts (Jan 19)
    - CERT Vendor-Initiated Bulletin VB-98.01 - excite Aleph One (Jan 19)
    - GCC 2.7.? /tmp files Micha? Zalewski (Jan 15)
    - Re: GCC 2.7.? /tmp files Niels Bakker (Jan 16)
    - pnserver exploit.. Aleph One (Jan 15)
    - Re: pnserver exploit.. Angelos Karageorgiou (Jan 16)
    - Re: pnserver exploit.. Donald van de Weyer (Jan 21)
    - (AUSCERT ESB-98.009) CERT Advisory CA-98.02 - Vulnerabilities in Grant Beattie (Jan 21)
    - Q179148: Settings May Not Be Applied with URL with Short Filename Aleph One (Jan 23)
    - CDE: dtappgather on AIX Marcin Cieslak (Jan 25)
    - Simple OpenBSD crash script Jason Downs (Jan 25)
    - Re: Simple OpenBSD crash script GvS One (Jan 28)
    - Quake 2 Linux kevingeo () CRUZIO COM (Jan 25)
    - Re: Quake 2 Linux Greg Alexander (Jan 27)
    - Announcement: Phrack 52 route () RESENTMENT INFONEXUS COM (Jan 26)
    - Microsoft responds to bug in Exchange Server Tony Hagale (Jan 27)

(Thread continues...)