Date: Tue, 1 Sep 1998 21:38:26 -0700 (PDT) From: michael@blueneptune.com To: freebsd-isp@FreeBSD.ORG Cc: andrew@squiz.co.nz Subject: Re: procmail (was Re: qmail/ezmlm) Message-ID: <199809020438.VAA17358@rainey.blueneptune.com> In-Reply-To: <Pine.BSF.3.96.980902152834.1035A-100000@aniwa.sky> from Andrew McNaughton at "Sep 2, 98 03:44:29 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
I tried the following using version 3.11pre7 of procmail, under FreeBSD 2.2.6, and did not see any corruption. It just said it couldn't open the file, and exited normally. > I haven't yet seen exploit code, but evidence of probable exploitability > was tacked onto stuff about mincom in a BUGTRAQ item on monday. I've > confirmed that the registers get corrupted in my version of procmail > (3.11) under FreeBSD (2.2.5). > > --------------- Forwarded message follows ---------------- > [...] > > woozle:~> gdb ./procmail > [...] > (gdb) r `perl -e 'print "A" x 5000'` > Starting program: /home/emsi/./procmail `perl -e 'print "A" x 5000'` > > [You need to type ^D here!!!] > > procmail: Couldn't create "/var/spool/mail/emsi" > (no debugging symbols found)...(no debugging symbols found)... > Program received signal SIGSEGV, Segmentation fault. -- Michael Bryan michael@blueneptune.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199809020438.VAA17358>