Date: Wed, 2 Sep 1998 17:25:55 +1200 (NZST) From: Andrew McNaughton <andrew@squiz.co.nz> To: michael@blueneptune.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: procmail (was Re: qmail/ezmlm) Message-ID: <Pine.BSF.3.96.980902172413.1035D-100000@aniwa.sky> In-Reply-To: <199809020438.VAA17358@rainey.blueneptune.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Try increasing the ammount of input. I used 15000 rather than the 5000 used by the author of the original post. Andrew On Tue, 1 Sep 1998 michael@blueneptune.com wrote: > I tried the following using version 3.11pre7 of procmail, under > FreeBSD 2.2.6, and did not see any corruption. It just said it > couldn't open the file, and exited normally. > > > I haven't yet seen exploit code, but evidence of probable exploitability > > was tacked onto stuff about mincom in a BUGTRAQ item on monday. I've > > confirmed that the registers get corrupted in my version of procmail > > (3.11) under FreeBSD (2.2.5). > > > > --------------- Forwarded message follows ---------------- > > [...] > > > > woozle:~> gdb ./procmail > > [...] > > (gdb) r `perl -e 'print "A" x 5000'` > > Starting program: /home/emsi/./procmail `perl -e 'print "A" x 5000'` > > > > [You need to type ^D here!!!] > > > > procmail: Couldn't create "/var/spool/mail/emsi" > > (no debugging symbols found)...(no debugging symbols found)... > > Program received signal SIGSEGV, Segmentation fault. > > -- > Michael Bryan > michael@blueneptune.com > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980902172413.1035D-100000>