HPUX 10.2011 Wall Message - Local Buffer Overflow

2003-02-07T00:00:00
ID EXPLOITPACK:732CD1FFBC9C422624B347C349B40925
Type exploitpack
Reporter Scotty
Modified 2003-02-07T00:00:00

Description

HPUX 10.2011 Wall Message - Local Buffer Overflow

                                        
                                            source: https://www.securityfocus.com/bid/6800/info

It has been reported that the HPUX wall executable may be prone to a buffer overflow condition. This buffer overflow is alleged to be triggered when an excessive amount of data is redirected into wall as a message intended to be broadcast.

It may be possible for remote attackers to corrupt sensitive regions of memory with attacker-supplied values, possibly resulting in execution of arbitrary code.

perl -e 'print "A" x 9000' > /tmp/out
/usr/sbin/wall /tmp/out