Full Disclosure mailing list archives
Buffer Overflow in ActivePerl ?
From: "Oliver () greyhat de" <Oliver () greyhat de>
Date: Mon, 17 May 2004 22:23:56 +0200
hi folks,i played around with ActiveState's ActivePerl for Win32, and crashed Perl.exe with the following command:
perl -e "$a="A" x 256; system($a)"I wonder if this bug isnt known?!? Because system() is a very common command....
Can anybody reproduce this?I put together a little advisory on my website, including version information and a debugger output (Drwatson):
http://www.oliverkarow.de/research/ActivePerlSystemBOF.txtPS: Due to travel activity, i will not be able to respond to mails within the next 8 days!
Regards, Oliver _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Buffer Overflow in ActivePerl ? Oliver () greyhat de (May 17)
- Re: Buffer Overflow in ActivePerl ? morning_wood (May 17)
- Re: Buffer Overflow in ActivePerl ? Troels Bay (May 17)
- Re: Buffer Overflow in ActivePerl ? Stef (May 17)
- Re: Buffer Overflow in ActivePerl ? Troels Bay (May 18)
- Re: Buffer Overflow in ActivePerl ? Troels Bay (May 17)
- Re: Buffer Overflow in ActivePerl ? morning_wood (May 17)
- Re: Buffer Overflow in ActivePerl ? rich . sf (May 17)
- RE: Re: Buffer Overflow in ActivePerl ? Bill Royds (May 18)
- Re: Buffer Overflow in ActivePerl? Axel Beckert (May 18)
- Re: Re: Buffer Overflow in ActivePerl? Volker Tanger (May 18)
- Re: Re: Buffer Overflow in ActivePerl? Frederic Krueger (May 18)
- Re: Re: Buffer Overflow in ActivePerl? Volker Tanger (May 18)
- Re: Buffer Overflow in ActivePerl ? Frederic Krueger (May 18)