Bugtraq mailing list archives
Re: Buffer Overflow in ActivePerl?
From: Axel Beckert <beckert () ecos de>
Date: Tue, 18 May 2004 11:03:40 +0200
Hi! Am Mon, May 17, 2004 at 10:23:56PM +0200, Oliver () greyhat de schrieb:
i played around with ActiveState's ActivePerl for Win32, and crashed Perl.exe with the following command: perl -e "$a="A" x 256; system($a)" I wonder if this bug isnt known?!? Because system() is a very common command.... Can anybody reproduce this?
I can confirm this for Perl v5.8.0 built for MSWin32-x86-multi-thread
(Binary build 805 provided by ActiveState Corp.) on W2K.
My first thought was that the nested double-quotes maybe the reason,
but even
perl -e "$a='A' x 256; system($a)"
crashes.
perl -e "system('A'x256)"
chrashes also btw.
Kind regards, Axel Beckert
--
-------------------------------------------------------------
Axel Beckert ecos electronic communication services gmbh
it security solutions * web applications with apache and perl
Mail: Tulpenstrasse 5 D-55276 Dienheim near Mainz
E-Mail: beckert () ecos de Voice: +49 6133 939-220
WWW: http://www.ecos.de/ Fax: +49 6133 939-333
-------------------------------------------------------------
Current thread:
- Buffer Overflow in ActivePerl ? Oliver () greyhat de (May 17)
- Re: Buffer Overflow in ActivePerl ? rich . sf (May 18)
- RE: [Full-Disclosure] Re: Buffer Overflow in ActivePerl ? Bill Royds (May 18)
- Re: Buffer Overflow in ActivePerl ? Josh Tolley (May 18)
- Re: Buffer Overflow in ActivePerl? Axel Beckert (May 18)
- Re: Buffer Overflow in ActivePerl ? Nick FitzGerald (May 18)
- <Possible follow-ups>
- Re: Buffer Overflow in ActivePerl ? noderat (May 18)
- RE: Buffer Overflow in ActivePerl ? Drew Copley (May 18)
- Re: Buffer Overflow in ActivePerl ? David Cantrell (May 19)
- Re: Buffer Overflow in ActivePerl ? David Ahmad (May 19)
- Re: Buffer Overflow in ActivePerl ? David Cantrell (May 19)
- Re: Buffer Overflow in ActivePerl ? rich . sf (May 18)