2009-07-20 FreeBSD 7.2 (pecoff executable) Local Denial of
Service Exploit 23 R D Shaun Colley
Damian Weber
dweber at htw-saarland.de
Wed Nov 11 18:52:39 UTC 2009
On Wed, 11 Nov 2009, Bjoern A. Zeeb wrote:
> Date: Wed, 11 Nov 2009 17:37:50 +0000 (UTC)
> From: Bjoern A. Zeeb <bzeeb-lists at lists.zabbadoz.net>
> To: Oliver Pinter <oliver.pntr at gmail.com>
> Cc: freebsd-security at freebsd.org, wkoszek at freebsd.org
> Subject: Re: 2009-07-20 FreeBSD 7.2 (pecoff executable) Local Denial of
> Service Exploit 23 R D Shaun Colley
>
> On Mon, 20 Jul 2009, Oliver Pinter wrote:
>
> Hi,
>
> > http://milw0rm.com/exploits/9206
>
> has anyone actually been able to reproduce a problem scenario with
> this on any supported releases (7.x or 6.x)?
>
> The only thing I gould get from that was:
> execve returned -1, errno=8: Exec format error
>
FWIW, I got another result on 6.4-STABLE
FreeBSD mymachine.local 6.4-STABLE FreeBSD 6.4-STABLE #6: Sat Oct 3 13:06:12 CEST 2009 root at hypercrypt.local:/usr/obj/usr/src/sys/MYMACHINE i386
$ ./pecoff
MZaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaîîîîaaaa
[I'm truncating here, ~3500 a's follow]aaaaa: File name too long
-- Damian
More information about the freebsd-security
mailing list