Subject: Re: Code-red worm (snicker snicker...)
To: Hubert Feyrer <firstname.lastname@example.org>
From: Michael Kukat <email@example.com>
Date: 08/02/2001 20:09:08
On Thu, 2 Aug 2001, Hubert Feyrer wrote:
> On Unix, just because you can overflow a buffer doesn't mean the CPU
> can run the code you feed it.
But don't think you are safe, because your Alpha can't execute the i386-code
of the script kiddies. Interpreter scripts (like usual shell scripts) just run,
if the buffer overflow allows execution of code. So just start with "#!/bin/sh"
and it will run on every platform, can modify /etc/inetd.conf, HUP it, and
voila, your shell on some port is open...
visit http://www.bsdfans.org/ Home network powered by: NetBSD OpenBSD FreeBSD
Solaris HP-UX IRIX AIX MUNIX Tru64 Ultrix VMS SINIX Dolphin_Unix OpenStep MacOS