88918 2003-01-24 17:29 /34 rader/ Joe Testa <Joe_Testa@rapid7.com>
Importerad: 2003-01-24 17:29 av Brevbäraren
Extern mottagare: full-disclosure@lists.netsys.com
Extern mottagare: bugtraq@securityfocus.com
Mottagare: Bugtraq (import) <3211>
Ärende: Test program for CVS double-free.
------------------------------------------------------------
Greetings--
Attached to this e-mail you'll find a Java program which probes a
CVS pserver for the recent double-free() vulnerability.
I've tested it on a Linux architecture only; it would be much
appreciated if people would mail me back with its performance results
against *BSD, AIX, etc...
Here is how this tool works:
[jdog@wonderland jdog]$ java CVSProber 192.168.1.5 jdog chad0wnzme
/cvs Connecting...connected. Server responded with 'ok', which means
that it is not vulnerable. Probe completed. [jdog@wonderland jdog]$
java CVSProber 192.168.1.7 anonymous /cvs Connecting...connected.
Server killed the connection and thus appears to be vulnerable!
Probe completed. [jdog@wonderland jdog]$
Word.
- Joe Testa, Rapid 7, Inc.
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x02B00839
A145 B158 2CA7 00A2 BAE8 4A18 57E5 18E0 02B0 0839
(See attached file: CVSProber.tar.gz)(See attached file:
CVSProber.tar.gz.sig)
(88918) /Joe Testa <Joe_Testa@rapid7.com>/(Ombruten)
Bilaga (application/octet-stream) i text 88919
Bilaga (application/octet-stream) i text 88920
88919 2003-01-24 17:29 /15 rader/ Joe Testa <Joe_Testa@rapid7.com>
Bilagans filnamn: "CVSProber.tar.gz"
Importerad: 2003-01-24 17:29 av Brevbäraren
Extern mottagare: full-disclosure@lists.netsys.com
Extern mottagare: bugtraq@securityfocus.com
Mottagare: Bugtraq (import) <3212>
Bilaga (text/plain) till text 88918
Ärende: Bilaga (CVSProber.tar.gz) till: Test program for CVS double-free.
------------------------------------------------------------
���BW1>��CVSProber.tar�í�ýSÛF6¿ÖÅÉÅØÆ6�)m
¡)½�)�IïÒLFHk[±¤Uw%�ió¿ß{»¥µÜLî&3ÞÉÄX~û¾¿öi÷ß½�üöGçÊyôUV§Ûélv::¸¶67ÏN§×ï÷6�áîF¯ßë®o!|¯àÐù:ì+#��}ôøè.¸û~ÿF×Úêj
Vá|ìK��
'ÉD�ûoÎ@2qÅ�$�ÿbà�ÁOÀu"¸d�ß0�ü�u
ð£�á¢5�5VG&d!�7p�pw�ÉÔwY�à�&�dÌàÒ¾K����p�G�]·½4`¦È
m�ú�ÿ,JAB¥Ùm¤¯��¡
uÏ��"'dõ��+GøÎe ,�ÉG(�\NýÄ�×aF.12f¨ÛîJ;GÓS\ø
�A*Q�
�"bnB5¡Þ^«7a:öÝ1ª*Ly)8$9PµZ}� �c&øp
Ö"N/Ù�Oß@�°a2cr]1YG/ORY¯pK¦��F@¡½º�&��0�!Ú
D�G8Qµ�ájâÏ�ä¢(û(1ÐE´ÕsL}Ä$��Kè¶6ÀAY�0O£È|\*Ç�(2±}áBâ¬,1Z¨Ð!ÑÑÿàPù21@þí�?B~µgÇ��F�i�q¼ò£ô��ç�^×ojä´Øµã&+è¾àñ¨À$âS
ÊŤ ²úüìE�ö�o�ò®õvq|ø{K9`HÄöBð�Ã��Ã�Â�¾ÿH;?
'ö½¶ËÃ�j�´?�*²Stð�ÙØc�I��
I�qà$¨³Ðh"2µ'Åäס_Ð31��Î'¤
d@
ärò�£Ãú�C"�D�ñé³È©
ÜT9Ò«à
wy�iø�¥
Bic(x��¤�æ�ÈÖ
Y´>yä
E§��±#(�!sZwé(À$B�í�F^»��Íæ¢ìhe|Ê´'¿<¾×ée^ý
W½vg©p�cK�½_9sRwþ�º
¤¨�x|è
HªRl^¡cl�V¨õµNw·�ÝA¿?è÷j��\Çð¸ sÊ®|B&�e%Ô¯øÈûñ�X¾_�µRUdçvíy�ê#¤<¾�bMÔ¨è£� þ�t´\vjë%jëÐë
zëî¶Ú>f(Åx~¹�cÓÿ¤Ò·¼@o@g}ÐÛ´�8FwÏs1úÎh»�Ú.âì�úv´øNéGïÖx×j5?¹HLÒXÒ>ÃÒÅ�ã¹ÏÛ¯�Ö¾·ÂO¨üö<��ѹ½S©±úóa�§ÉY¡�Þ�qrpí²DÞ©ÕbíÌn6,�þªÕj$Iö3eyüÐìbL©]Ò
رÀøÇ°-þ¾})�\_oßR�p¯ä)ç�K6毸9´ïrÄH¾{�+3iiÁëÜ1Uñxæ�Ù¬ÜP[Û�F va�<¶¡�Ýâì�kFØÆ"ØVZ
å�éØ�yJ�8|ýÁñ<ÁÐ*��a:]§``³åwy,¾'|�¨?¢eXÙ¹k'��+Ýg½vws»eKg"då~N\ÌêiôéÁ�²ò0�ïàáAä±£nBÊ»©_ûI�677Ë¿.yCæ)~¼�cW{
tàýÎ<jOr®�`(Ë�M«âS»äSóþSx¹&Ñ+ U¿¼·¼=EÞÃ.�kµ®£%ï�°úÕ÷ê
��`Y»ôú�¤]�a¡Kò(j�ÜÎkyö%Á�ý¯ÍBXQ´ wìó(ÂÆ�55ºbÒ"+±i©�
áÐÛètoq��å®&Ã<MÃdk.!©R²kdL´G,9IY&n¬`¿'R6O¾æ�
�êY%«7¬�PP/mÀ&w¥*J*
å²¥�>Çu¬QÙêñü
Új/7a�[7l¨Z!÷Òéh3�/aßýs�ª°/Çiâñ©JDê ;Gb'ýTE>ÇÏÚ-�·Ì8ylúSAaÚ®ö°Így�*Éo�nãQÇ
$ÒÒG#Ln÷h';]x¾Gç�ÁTàa8ÊVÓ1¨'x¼�<l®,>ü0�~÷%úJÿîÛÓö¡(3-érAG5L
_"»Þ¢ËK¥~(Ô¶w¦¥øA δÔÜëTK�a!}HÝ¥µLgFGÈlæp��*à2È´S�ÍjÍõÂ@|¢ló
�`¦yDG�ut¬óÉl:ò`îC<sÈ|ÊCE2ºW�Q-<ÖI��¯:ßF,�ã
.ev�vp*K7J|ú3?óÚ°ÑâáïÒᢢ©�ëC´´7¤²år!Ò�E£��SGªIW3�<XQ:�²!È�êÔ¡*ÿ{
Ëu<¿�ó#£ÉT£�ø@ºÿ�Ê��)÷
Q;nÀìH�ìam÷lÃ@uÖæ�ö
Ø7V>�>öÿÁÍ�ÖRP=*±}µ
e~ËåÓHV³pWß^q�õ+H9¥qbRïl<?xyx�{�ç¿ÀéÁo��gç�#�XÞÉUÑçês[wÓ<8~Q¥8ßö�üÉ#v"^é?ù�ÓNçíE8W'o�à_'�Õ\^2Ñ1W\èYQ1\ºÃA�*LKéöi%
�lN¼öJ©¸Úì«û§[ì7§$L]iTN�¹¢ÍÈSKö3�jÒîg!¤8e#?ñC'Ñã37ði¡îÉrÂÈ
¼q�ßké�*��|'YËP3Y
ûcFÓù�jáM[�{wõP¦!ìóø¦5¤Îí"öhò
ûBM`³ï-<qé<wÄÄ��¿¦øÅÏSW¶<8#
â-ÅÂ)�Ñl^öQ;cIK«¹5�
«Y¨>Ö°¾;)
Ôs�Ò()�Ø÷£�½¨P�Rͬúîæ�}äáHë*Þj&ôVP¥�-áÊ�mÖ#8ºÄlt�àg8Ê¡�ªWNÍ A[RHdÞ¦=CÙ�¨gL÷ÃTÛæ�ÛcªÔ�üý÷íø-]¸¯çYþ'$¼T)wúÂÿ$J¤FØ6daCb¢=ôK�¹eêÙk�ÿe%:ǤäÉ�ÍMN½Á'y�ö�?¹Ñ²cB¿"+£Î踲è*½2ÉGFGKûg]wÇpn×t*T�/ü4<cl§¢c�ÇnÕ;u]TÖ0
ò�µð9ý\rN#Õ¢�ÿÂÜôÐ7Tº9CÕ�¯t..vS'e�"�fQÈL�|ö
kcPD
�z�ѹî8·»K¦öLT©?Ê=DéÈ"r¨»ÿèöo��©�çz+I¤¦
àè¦�êH$\)K�FÙ¬ã
1G|ý:�Ѹ+a·ËZÄw&nF@Ï@gV·ô3ÀR¦R¦.�Dò$cP
w�á
(üýÛgÆÜä.2s�ú¥2ÅÞE!�²<�ó¼B+ÓÆY/K'
ì0¡ymtæº,º¯±#Çjj�8ªq�ªÖÞ\ÊU�åU}Îð³|77Ë#®òµ�kà'Xþ³qâìGwì�§¡�¿{
èÑ;èõ7i.X8¼úR��°AP+Ý^g§�ñÇr�¤¿^
ø£ó¬
ñ¤�±Õ³�©8¶«
�
Ñ2ÀæF�`ÕÀ°Y�xj`ت�4
.»��-
¶AÃ"çZ�`ÛÂDÇd¢[
è��³¨»gpÙ¯�¬4,&Ý(ClX�úeu&6
A-\n���9·Ë�Ï,b<3m��rZØ1°Xü{�
Å¢»&Åu0£ÐÂÆf|XDÙ3nñç$8Þ7Lj�xa�Xtq`riãg�
E�/
.-~õáW�u�LXäøÕ`¢Ë�º´pùÊÀ`óÈ´¨
cÃy-Þ}b�jáòµIÃ�ñ!�àÔ�°�é�A�LXP\���o�.,6k¨ÛâÛ¿�Ê´Øã_FƳhûßfZtõÁàÒ"c
j!ri�±�âÎkQ§gBX¨0�Ââ¾Cê�
�uY¼wl(ÜÁ7HX0|40X������
��B�À¢íÈ`Ò¢Jn8%ÙÄSX�þ4Mn�C�\Z|W�°31¸´¨250X¸¼2�a!15ä´hêÚÂ"æÁÅ���zÆtfÈEn��üø~Ö�g/æ©á÷>̳Fùé.4©ÙN"µGï¢q×ü+ðÒ~:æj4Åáàs~ì××
jÿï[½�_Ùy±\'_ÆÝ÷¿;Ýþf7¿ÿ½¾¾p�;½ÅýïÿŪ½�Ñ W¶ZYí%£f½ù<µBÇ�à§u<k�龨�¿ÒÅüƸ~u�óKpjåëµtqF!¹4×öxz�°Vv«×2)Toâ²[»~¢oë{¹pÇ~Â\@Ï��Ò+]z�¦î¸æÄ1�òÕ$Û�BÌx�°�F
�Òusw¢_ßÑeÒ
º'ëD.ËÆa²f¹ÂË�ÎíÅüîúOµ�Î�}ûw:|G®òÓÞo�>ôýýã{¯kå7±B}�«f\£).»Ôîzß«ÑÚü°/çy�Ì[÷q{Ï;ë[_E?ÕÌ{ßr@úïVqµ·
§t�¶p�¹ÚÕÆI��ÖÖâQÜ�ý¤Í¼t5y«»�Oä�Ý
Nã�y¼;bÉ�ÉÈûv;×ÞóNg{ýîF�wûÛÐÛßÛNg¯�Ï÷�¶�6öºÛÐß:èCwû �´�Ô¶o¨4,Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Öb-Ö7¶þ�9Çò�P��
(88919) /Joe Testa <Joe_Testa@rapid7.com>/(Ombruten)
88920 2003-01-24 17:29 /1 rad/ Joe Testa <Joe_Testa@rapid7.com>
Bilagans filnamn: "CVSProber.tar.gz.sig"
Importerad: 2003-01-24 17:29 av Brevbäraren
Extern mottagare: full-disclosure@lists.netsys.com
Extern mottagare: bugtraq@securityfocus.com
Mottagare: Bugtraq (import) <3213>
Bilaga (text/plain) till text 88918
Ärende: Bilaga (CVSProber.tar.gz.sig) till: Test program for CVS double-free.
------------------------------------------------------------
?���>1X#Wå�à�°�9��æ��Y08�úïEÄ�Ã&[ß2�rhj
�vºô:ì-¹v8ºx�w;j�¼
(88920) /Joe Testa <Joe_Testa@rapid7.com>/----------