Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Buffer overflow in awk

From: nilton.gs.sc () zipmail com br
Date: Fri, 15 Mar 2002 18:33:57 -0300
Hi,
You are right. Conectiva Linux (brazilian distro with a lot of vulnerabilities)
and RedHat are vulnerable to awk b0f.

"why find a bug in awk and exploit it ?"
To elevate privilegies!

PS: greetz keoki, <keoki () techie com>.

Best regards...
Nilton Gomes

-- Mensagem original --


Hi,

In my Debian Potato r5 and Conectiva Linux 7 it worked too!

But i would ask the some thing, why find a bug in awk and exploit it ?




1) It isn't suid root in linux.
2) doesn't used in web applications

Then, why exploit it ?

ps.: sorry for my poor english.

cheers.

[ ]'s






------------------------------------------
Use o melhor sistema de busca da Internet
Radar UOL - http://www.radaruol.com.br
Previous By Date Next
Previous By Thread Next

Current thread: