Date: Tue, 21 Apr 1998 13:16:19 +0200 From: Martin Machacek <martin@eunet.cz> To: freebsd-security@FreeBSD.ORG Subject: Re: Nasty security hole in "lprm" (fwd) Message-ID: <199804211117.LAA16112@hub.freebsd.org> In-Reply-To: Your message of "Mon, 20 Apr 1998 13:57:42 EDT." <Pine.BSF.3.96.980420135732.20071A-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> > Do we got this one? > > lprm -Psome_remote `perl -e 'print "a" x 2000'` > Segmentation fault Seems, that at least FreeBSD-3.0 is safe. I've tried it in tcsh, csh, bash an sh and I've got either: <name_of_the_printserver>: lpd: Command line too long or Word too long. The ultimate check is to look into code, of course ... -- Martin Machacek [Internet CZ, Zirovnicka 6/3133, 106 00 Prague 10, Czech Republic] [phone: +420 2 71760337 fax: +420 2 24245125] [PGP KeyID 00F9E4BD] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199804211117.LAA16112>