Bugtraq mailing list archives

Re: Telnetd AYT overflow scanner

From: John Marquart <jomarqua () indiana edu>
Date: Thu, 26 Jul 2001 16:53:29 -0500 (EST)

In addtion to the systems mentioned, AIX 4.3.3 (ML 4) seems to have
problems - SPtelnetAYT shows it as being not vulnerable, but when run
against an AIX 4.3.3_04 box, it causes telnetd to dump core:

Detail Data 
SIGNAL NUMBER
          11 
USER'S PROCESS ID:
       41078 
FILE SYSTEM SERIAL NUMBER
           5 
INODE NUMBER
           2 
PROGRAM NAME
telnetd 
ADDITIONAL INFORMATION 
strncmp 1C
cleanup B0 
netflush 114 
ttloop 28 
gettermin 7C 
doit 400 
main 5B8 
__start 8C
 
Symptom Data REPORTABLE 1 INTERNAL ERROR 1 SYMPTOM CODE
PIDS/5765c3403 LVLS/430 PCSS/SPI2 FLDS/telnetd SIG/11 FLDS/strncmp VALU/1c
FLDS/netflush

Current thread:

Telnetd AYT overflow scanner info (Jul 25)
- Re: Telnetd AYT overflow scanner Martin Elster (Jul 25)
- Re: Telnetd AYT overflow scanner Riley Hassell (Jul 25)
- <Possible follow-ups>
- Re: Telnetd AYT overflow scanner der Mouse (Jul 25)
  - Re: Telnetd AYT overflow scanner David Maxwell (Jul 26)
- Re: Telnetd AYT overflow scanner aleph1 (Jul 26)
  - Re: Telnetd AYT overflow scanner John Marquart (Jul 26)