Bugtraq mailing list archives

Re: tcsh buffer overflow

From: christos () ZOULAS COM (Christos Zoulas)
Date: Tue, 15 Sep 1998 13:23:32 -0400


On Sep 15,  3:02am, wichert () WIGGY ML ORG (Wichert Akkerman) wrote:
-- Subject: tcsh buffer overflow

| --yrj/dFKFPuw6o+aM
| Content-Type: text/plain; charset=us-ascii
| Content-Transfer-Encoding: quoted-printable
|
|
| After the whole mess with bash recently I decided to take a short look
| at tcsh and found it has the same problems. Although tcsh-scripts
| are very uncommon, it's still exploitable. Below is a patch which
| should fix the problems.
|

But not all systems have getcwd()... This will have to be fixed in the
next version.

christos

Current thread:

tcsh buffer overflow Wichert Akkerman (Sep 14)
- Re: tcsh buffer overflow Christos Zoulas (Sep 15)