Exploit Cray UNICOS /usr/bin/script - Command Line Argument Local Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
27065
Проверка EDB
  1. Пройдено
Автор
MICHEAL TURNER
Тип уязвимости
LOCAL
Платформа
LINUX
CVE
cve-2006-0177
Дата публикации
2006-01-10
Код:
source: https://www.securityfocus.com/bid/16205/info

Cray UNICOS is prone to locally exploitable buffer overflow vulnerabilities. These issues are due to insufficient bounds checking of command line parameters in various utilities with setuid-superuser privileges.

Successful exploitation could result in execution of malicious machine code with superuser privileges, facilitating the complete compromise of affected computers.

These issues are reported in version 9.0.2.2 of UNICOS; other versions may also be affected. 

for '/usr/bin/script':
script `perl -e 'print "A"x1000'`
 
Источник
www.exploit-db.com

Похожие темы