[Full-Disclosure] (no subject)
steven.mcdonald
steven.mcdonald at insightbb.com
Tue May 18 13:36:24 BST 2004
Oliver,
Quickly testing the below string at the command line does crash perl.exe. I have ActivePerl 5.8.0 Build 805 install on a Windows 2000 machine.
perl -e "$a="A" x 256; system($a)"
-----Original Message-----
From: Oliver at greyhat.de [mailto:Oliver at greyhat.de]
Sent: Monday, May 17, 2004 4:24 PM
To: full-disclosure at lists.netsys.com
Cc: bugtraq at securityfocus.com
Subject: Buffer Overflow in ActivePerl ?
hi folks,
i played around with ActiveState's ActivePerl for Win32, and crashed
Perl.exe with the following command:
perl -e "$a="A" x 256; system($a)"
I wonder if this bug isnt known?!? Because system() is a very common
command....
Can anybody reproduce this?
I put together a little advisory on my website, including version
information and a debugger output (Drwatson):
http://www.oliverkarow.de/research/ActivePerlSystemBOF.txt
PS: Due to travel activity, i will not be able to respond to mails
within the next 8 days!
Regards,
Oliver
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040518/d107e353/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.