Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security VulnWatch
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] [xfocus-SD-060206]BCB compiler incorrect deal sizeof o

from [XFOCUS Security Team] Network Security [Permanent Link]
Subject: [Full-disclosure] [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability
Date: Mon, 06 Feb 2006 22:05:46 +0800 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Title:[xfocus-SD-060206]BCB compiler incorrect deal sizeof operator
vulnerability

Affected version : <= BCB6+ent_upd4
Vendor: http://borland.com/
Url: http://www.xfocus.net/releases/200602/a849.html


XFOCUS (http://www.xfocus.org) had already discovered
a vulnerability in BCB6(ent_upd4) compiler.
It maybe cause integer overflow if you misuse use sizeof operator.


/**
 * check_compiler_sizeof_vulnerability.c
 *
 * Check compiler whether correct deal with sizeof operator,
 * which can cause integer overflow if you careless use !!!
 *
 * note: some old compiler have this vulnerability!!!!
 *
 * by alert7@xfocus.org
 *
 * XFOCUS Security Team
 * http://www.xfocus.org
 *
 * already tested:
 *
 * BCB6+ent_upd4....................................vuln !!!
 * gcc version 4.0.0 20050519 (Red Hat 4.0.0-8).....not vuln
 * gcc version 2.95.3-4(cygwin special).............not vuln
 * gcc version egcs-2.91.66.........................not vuln
 * cc: Sun WorkShop 6 2000/04/07 C 5.1 .............not vuln
 * VC6+sp5..........................................not vuln ,thank eyas
 * lcc version 3.8..................................not vuln ,thank
tombkeeper
 * evc4+sp4.........................................not vuln ,thank san
 *
 * REQUEST YOUR COMMENT:
 * VC6 not sp5......................................?
 * VC7..............................................?
 * evc not sp4......................................?
 * freebsd gcc version..............................?
 * openbsd gcc version..............................?
 * ...
 */
#include <stdio.h>

int main(int argc, char *argv[])
{
        int i =-1;

        printf("Check compiler whether correct deal with sizeof
operator\n");
        printf("  by alert7@xfocus.org \n\n");

        if (i > sizeof ( int ) )
        {
                printf("This compiler is not vuln\n");
        }else
                printf("This compiler is vuln!!!\n");

         getchar();

        return 0;
}


- --EOF

- --

Kind Regards,

- ---
XFOCUS Security Team
http://www.xfocus.org

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFD51e5whDwaF6cSWIRAmbkAJ4sN66WOJMKPY4RjSq5p7TvdSGGigCfe5SU
wolEFAITtYi8fWNND0uyO5c=
=ibnF
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] What can a Remote Vulnerability Scanner do in Future?, Alice Bryson
Next by Date:  [Full-disclosure] Re: [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability, XFOCUS Security Team
Previous by Thread:  [Full-disclosure] What can a Remote Vulnerability Scanner do in Future?, Alice Bryson
Next by Thread:  [Full-disclosure] Re: [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability, XFOCUS Security Team
Indexes:  [Date] [Thread] [Top] [All Lists]