Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » OpenUnix DT Library Buffer Overflow

OpenUnix DT Library Buffer Overflow

by phiber on August 6th, 2001 A buffer overflow within some dt utilities has been discovered. When the $HOME environment variable is filled with 9000 bytes of data, dtaction, dtsession, and dtprintinfo all overflow and exit abnormally.


This overflow may result in the overwriting of stack variables, including the return address. As these programs are all setuid root, it may be possible to execute arbitrary code with the inherited privileges of root.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »