Bugtraq mailing list archives
Re: WuFTPD: Providing *remote* root since at least1994
From: kragen () POBOX COM (Kragen Sitaker)
Date: Fri, 30 Jun 2000 21:43:02 -0400
[Elias, if you approve my previous post, I'd be most obliged if you'd post this correction with it.] On Fri, 30 Jun 2000, Kragen wrote:
ftp://ftp.openbsd.org/pub/OpenBSD/src/lib/libc/string/. Theo de Raadt posted a portable, audited, well-tested implementation of snprintf to BUGTRAQ in 1997; unfortunately, his link to http://theos.org/~deraadt/snprintf.c is now broken.
Sorry, that's http://theos.com/~deraadt/snprintf.c, and it's still broken.:) However, http://theos.com/deraadt/snprintf.c works. It's also not particularly portable, relying on mprotect(), sigaction(), and sigsetjmp(), so it will only run on Unixes, and only mostly POSIX-compliant ones, at that --- no ancient BSD without sigaction and no ancient SysV without mprotect(). Also, it could conceivably break if you handle SIGSEGV yourself (for e.g. user-level virtual memory). And it appears to have a bug: if you try to write into a buffer of zero bytes, it nevertheless null-terminates the result. So maybe there's still an excuse for not using snprintf(). :) -- <kragen () pobox com> Kragen Sitaker <http://www.pobox.com/~kragen/> The Internet stock bubble didn't burst on 1999-11-08. Hurrah! <URL:http://www.pobox.com/~kragen/bubble.html> The power didn't go out on 2000-01-01 either. :)
Current thread:
- Re: WuFTPD: Providing *remote* root since at least1994 Alan J Rosenthal (Jun 30)
- <Possible follow-ups>
- Re: WuFTPD: Providing *remote* root since at least1994 Kragen Sitaker (Jun 30)
- Re: WuFTPD: Providing *remote* root since at least1994 Kragen Sitaker (Jun 30)
- XFree86 4.0.1 and /tmp Joseph S. Myers (Jul 02)
- BitchX - more on format bugs? Forever shall I be. (Jul 03)
- BitchX exploit possibly waiting to happen, certain DoS bert hubert (Jul 03)
- Re: BitchX exploit possibly waiting to happen, certain DoS Daniel Jacobowitz (Jul 05)
- remote crash BitchX 1.0c16 Colten Edwards (Jul 03)
- Re: remote crash BitchX 1.0c16 Moniz, Troy (Jul 05)
- Oracle Web Listener for AIX DoS Peter Grundl (Jul 04)
- Remote DoS Attack in LocalWEB HTTP Server 1.2.0 Vulnerability Ussr Labs (Jul 04)
- Recovering Passwords in Visible Systems' Razor Clifford, Shawn A (Jul 05)
- proftp advisory lamagra (Jul 05)
(Thread continues...)