Skip to content

Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution (Trac #182) #88

Closed
@edsiper

Description

@edsiper

This one was hard to debug so I don't have much information in the way of stack traces, etc. but I do have a demo script and this will cause monkey to drop a core file which you can use for further analysis. However, it appears this has something to do with the handling of headers.

Below is the demo script. Just set the hostname and execute.

http://pastebin.com/7b0ZKNtm

Migrated from http://bugs.monkey-project.com/ticket/182

{
    "status": "closed", 
    "changetime": "2013-06-07T06:13:50", 
    "description": "This one was hard to debug so I don't have much information in the way of stack traces, etc. but I do have a demo script and this will cause monkey to drop a core file which you can use for further analysis. However, it appears this has something to do with the handling of headers.\n\nBelow is the demo script.  Just set the hostname and execute.\n\nhttp://pastebin.com/7b0ZKNtm", 
    "reporter": "dougsko", 
    "cc": "", 
    "resolution": "fixed", 
    "_ts": "1370585630421358", 
    "component": "Unspecified", 
    "summary": "Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution", 
    "priority": "major", 
    "keywords": "", 
    "version": "", 
    "time": "2013-05-30T15:22:49", 
    "milestone": "", 
    "owner": "edsiper", 
    "type": "defect"
}

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions