Vulnerability Development mailing list archives
Re: vi buffer overflow
From: Vasisht Tadigotla <vasisht () eden rutgers edu>
Date: Fri, 9 Nov 2001 16:17:34 -0500 (EST)
Just says File name too long on SunOS 5.7 IRIX 6.5 both vi and du don't crash On Fri, 9 Nov 2001, Kaneda Akira wrote:
Did some testing of my own. on Redhat 7.0 (VIM 5.7.8) # vi `perl -e 'print "A" x 9000'` Vim: Caught deadly signal SEGV Vim: Finished. Segmentation fault (core dumped) # uname -a Linux riven 2.2.16-22 #1 Tue Aug 22 16:49:06 EDT 2000 i686 unknown # however du on redhat 7 was okay (du version 4.0x) Also tested my slackware 7 system, vi and du didnt crash (vi/elvis 2.1_4, du 4.0) [Slackware system: Linux myst 2.2.16 #121 Fri Jun 16 20:43:40 PDT 2000 i486 unknown] --- KF <dotslash () snosoft com> wrote:Not sure how big of a deal either of these are due to the fact that they are not suid... any thoughts? # vi `perl -e 'print "A" x 9000'` Memory fault - core dumped # du `perl -e 'print "A" x 9000'` Memory fault - core dumped # uname -a SCO_SV scosysv 3.2 5.0.6 i386 -KF--- Kaneda Akira ICQ#49107701 Email: k_aneda () yahoo com Mobile: 0418 445 821 (Australia only) -- That's why we spend so much time trying to understand our own motivations and those of others. That's what makes life so interesting. -- Kaji, Evangelion Ep 18 -- The only secure computer is one that's unplugged, locked in a safe, and buried 20 feet under the ground in a secret location... and i'm not even too sure about that one"--Dennis Huges, FBI.
--------------------------------------------------------------------------- All men dream: but not equally. Those who dream by night in the dusty recesses of their minds wake in the day to find that it was vanity: but the dreamers of the day are dangerous men, for they may act their dreams with open eyes, to make it possible. - Seven Pillars of Wisdom
Current thread:
- Re: Vi buffer overflow, (continued)
- Re: Vi buffer overflow Rob Paisley (Nov 13)
- Re: vi buffer overflow Kaneda Akira (Nov 09)
- Re: vi buffer overflow Emmanuel BENOIT (Nov 09)
- Re: vi buffer overflow Matias Sedalo (Nov 09)
- Re: vi buffer overflow Thomas Graf (Nov 09)
- Re: vi buffer overflow walter valenti (Nov 09)
- Re: vi buffer overflow Piyush Agarwal (Nov 09)
- Re[2]: vi buffer overflow Greg Wirth (Nov 09)
- Re: vi buffer overflow Wichert Akkerman (Nov 09)
- Re: vi buffer overflow Robert Jaroszuk (Nov 09)
- Re: vi buffer overflow Vasisht Tadigotla (Nov 09)
- Re: vi buffer overflow Emmanuel BENOIT (Nov 09)
- RE: Vi buffer overflow Lord, Steve (ISS London) (Nov 09)
- RE: Vi buffer overflow batz (Nov 09)
- RE: vi buffer overflow Blue Boar (Nov 09)
- RE: vi buffer overflow Piyush Agarwal (Nov 12)
- RE: vi buffer overflow Hubert Pasternak (Nov 12)
- RE: vi buffer overflow Piyush Agarwal (Nov 12)