[prev in list] [next in list] [prev in thread] [next in thread]
List: dailydave
Subject: [Dailydave] Sun Directory Server 7.0 core_get_proxyauth_dn DoS
From: Evgeny Legerov <admin () intevydis ! com>
Date: 2010-01-10 22:31:52
Message-ID: 4B4A5558.8010601 () intevydis ! com
[Download RAW message or body]
Hello,
It is a simple null pointer dereference which can be used to crash ns-slapd.
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb1b47b90 (LWP 10233)]
0xb80098c4 in core_get_proxyauth_dn () from /opt/sun/dsee7/lib/libslapd.so
(gdb) bt
#0 0xb80098c4 in core_get_proxyauth_dn () from /opt/sun/dsee7/lib/libslapd.so
(gdb) x/i $eip
0xb80098c4 : cmpb $0x4,(%eax)
(gdb) i r eax
eax 0x0 0
(gdb)
More info and proof of concept code on our blog - http://www.intevydis.com/blog/?p=124
Regards,
-evgeny
_______________________________________________
Dailydave mailing list
Dailydave@lists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic