New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution (Trac #182) #88
Comments
|
Trac update at 20130530T16:27:44: dougsko commented:
|
|
Trac update at 20130605T18:17:24:
|
|
Trac update at 20130605T18:23:57: edsiper commented:
|
|
Trac update at 20130605T20:13:47: dougsko commented:
|
|
Trac update at 20130605T20:31:27:
to:
|
|
Trac update at 20130606T16:05:59: edsiper commented:
|
|
Trac update at 20130606T17:07:03: dougsko commented:
|
|
Trac update at 20130607T06:13:50:
|
This one was hard to debug so I don't have much information in the way of stack traces, etc. but I do have a demo script and this will cause monkey to drop a core file which you can use for further analysis. However, it appears this has something to do with the handling of headers.
Below is the demo script. Just set the hostname and execute.
http://pastebin.com/7b0ZKNtm
Migrated from http://bugs.monkey-project.com/ticket/182
{ "status": "closed", "changetime": "2013-06-07T06:13:50", "description": "This one was hard to debug so I don't have much information in the way of stack traces, etc. but I do have a demo script and this will cause monkey to drop a core file which you can use for further analysis. However, it appears this has something to do with the handling of headers.\n\nBelow is the demo script. Just set the hostname and execute.\n\nhttp://pastebin.com/7b0ZKNtm", "reporter": "dougsko", "cc": "", "resolution": "fixed", "_ts": "1370585630421358", "component": "Unspecified", "summary": "Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution", "priority": "major", "keywords": "", "version": "", "time": "2013-05-30T15:22:49", "milestone": "", "owner": "edsiper", "type": "defect" }The text was updated successfully, but these errors were encountered: