Re: Mkdir exploit for PDP-11 doesn't work

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Mkdir exploit for PDP-11 doesn't work
From: Denis Solaro <dsolaro@xxxxxxxxxx>
Date: Sun, 13 Jun 2004 08:28:00 +0200
In-reply-to: <Pine.BSO.4.44.0406091828110.23550-100000@xxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <Pine.BSO.4.44.0406091828110.23550-100000@xxxxxxxxxxxxxxx>

On Wed, 9 Jun 2004 18:36:31 -0400 (EDT)
Jonathan S <js@xxxxxxxxxxxxxx> wrote:

> Tim Newsham is right that there is an overflow present, but his exploit
> doesn't work (for me - it may work fine on his PDP-11 or emu).  A bus
> error is what happens, which is a good sign that the return address needs
> to be changed.  It sucks that there aren't very many tools in UnixV7,
> including text editors.
> 
> Here's the log of me executing the code he posted (I'll probably have it
> fixed so it works in 5 minutes, with any luck):

This could be induced by a bad grounding of the main console.  It happened to me
a few times when I've touched on of the panels.  You get a slight jolt and then
a few error messages when the hard drive unit is activated.  This is slightly
annoying but doesn't lead to a real security problem for the PDP-11. 
In my case Apache crashes, but I didn't find any proofs of any files tempered
with.

References:
- Mkdir exploit for PDP-11 doesn't work
  - From: Jonathan S

Prev by Date: Antivirus/Trojan/Spyware scanners DoS!
Next by Date: Re: Eudora SPAM Issues.. (Followup)
Previous by thread: Mkdir exploit for PDP-11 doesn't work
Next by thread: Eudora SPAM Issues..
Index(es):
- Date
- Thread