Re: Solaris Ping bug (DoS)

Jes Sorensen (Jes.Sorensen@CERN.CH)
Thu, 26 Jun 1997 13:37:17 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: just me.: "Re: Solaris Ping bug (DoS)"
Previous message: Aleph One: "'sec-fix' for NT 3.51"
Maybe in reply to: Adam Caldwell: "Solaris Ping bug (DoS)"
Next in thread: just me.: "Re: Solaris Ping bug (DoS)"

>>>>> "Adam" == Adam Caldwell <adam@ATL.ENI.NET> writes:

Adam> I briefly searched the bugtraq archives and didn't see this one,
Adam> so here's a way to reboot a Solaris box, and is exploitable by
Adam> anyone with an account on the system since ping is setuid root.

Adam> ping -sv -i 127.0.0.1 224.0.0.1

Adam> On solaris 2.5, causes the machine to reboot (personal
Adam> experience). I've had independent reports of it crashing 2.5.1,
Adam> and 2.5 (x86). It probably works on all versions of Solaris.

For what its worth, this bug is also present in 2.6-beta2, haven't
tested the release version of 2.6 yet.

Jes

Next message: just me.: "Re: Solaris Ping bug (DoS)"
Previous message: Aleph One: "'sec-fix' for NT 3.51"
Maybe in reply to: Adam Caldwell: "Solaris Ping bug (DoS)"
Next in thread: just me.: "Re: Solaris Ping bug (DoS)"