[Full-Disclosure] Buffer Overflow in ActivePerl ?
Date: Mon May 17 2004 - 16:23:56 EDT
hi folks,
i played around with ActiveState's ActivePerl for Win32, and crashed
Perl.exe with the following command:
perl -e "$a="A" x 256; system($a)"
I wonder if this bug isnt known?!? Because system() is a very common
command....
Can anybody reproduce this?
I put together a little advisory on my website, including version
information and a debugger output (Drwatson):
http://www.oliverkarow.de/research/ActivePerlSystemBOF.txt
PS: Due to travel activity, i will not be able to respond to mails
within the next 8 days!
Regards,
Oliver
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Mon May 17 17:35:39 2004
This archive was generated by hypermail 2.1.8 : Mon May 17 2004 - 18:09:50 EDT
