Bugtraq mailing list archives

Re: Mail-Max Remote Buffer Overflow Exploit

From: mouse () RODENTS MONTREAL QC CA (der Mouse)
Date: Tue, 16 Feb 1999 01:05:02 -0500

When putting code in the buffer to execute there are no major
restrictions on character set.  The only character I found to
interfere besides null was 17h (ret).


It's not clear which character you're referring to here.

RET is not one of the ASCII mnemonics.  You could plausibly be
referring to CR, carriage return, or NL, newline (the latter also known
as LF, line feed).  CR is octal 15, hex 0d, decimal 13, while NL is
octal 12, hex 0a, decimal 10.

17 hex is ETB.  17 octal is SI.  17 decimal is DC1.

                                        der Mouse

                               mouse () rodents montreal qc ca
                     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Current thread:

Mail-Max Remote Buffer Overflow Exploit pw (Feb 13)
- <Possible follow-ups>
- Re: Mail-Max Remote Buffer Overflow Exploit der Mouse (Feb 15)
  - Re: Mail-Max Remote Buffer Overflow Exploit pw (Feb 16)