lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20030520152522.27121.qmail@linuxmail.org>
From: akcss at linuxmail.org (akcess .)
Subject: Maelstrom Local Buffer Overflow Exploit

Local exploit for /usr/bin/Maelstrom due to insufficient bounds checking of the -player cmd line arg.

See attached proof-of-concept exploit.


-akcess


-- 
______________________________________________
http://www.linuxmail.org/
Now with e-mail forwarding for only US$5.95/yr

Powered by Outblaze
-------------- next part --------------
A non-text attachment was scrubbed...
Name: maelx.pl
Type: application/octet-stream
Size: 995 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030520/b9627882/maelx.obj

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ