|
ru.cisco
- RU.CISCO ---------------------------------------------------------------------
From : Eugene Grosbein 2:5006/1 03 May 2003 16:48:28
To : All
Subject : buffer overflow
--------------------------------------------------------------------------------
Запрос файла:
---------------------------------------------------------------------------
Packet 1
TIME: 16:32:20.182421
LINK: 00:10:7B:B3:22:E0 -> 00:02:B3:26:A9:52 type=IP
IP: gw-c-5 -> hq hlen=20 TOS=00 dgramlen=42 id=0001
MF/DF=0/0 frag=0 TTL=255 proto=UDP cksum=8DC5
UDP: port 7386 -> tftp hdr=8 data=14
DATA: ..c2600.octet.
Пошли данные:
---------------------------------------------------------------------------
Packet 2
TIME: 16:32:20.210834 (0.028413)
LINK: 00:02:B3:26:A9:52 -> 00:10:7B:B3:22:E0 type=IP
IP: hq -> gw-c-5 hlen=20 TOS=00 dgramlen=544 id=2F72
MF/DF=0/0 frag=0 TTL=64 proto=UDP cksum=1B5F
UDP: port 3629 -> 7386 hdr=8 data=516
DATA: .....ELF...............+...........4...T.....4. ...(........
.............[.l.^R...............................7T........
...........!...........T..8H.......................1........
......@....P...................1...........@..D4.[.,........
.........!..|.......=@..aJ...*..=@..aJ...j..=@..aJ......H..Q
=@..aJ...j..=@..aJ..}J..8*......H...H...K...D...N.. .!..|...
.....$..U .<|.J.T..:|...|.(@@..<.C...c...#..H....
......9J..9k..9).., ..A...8c..|.(@A...|p..Tc..<...|..x|p..L.
.,....| ...$...d..........8!..|...N.. }(..|x..
Подтверждение?
---------------------------------------------------------------------------
Packet 3
TIME: 16:32:20.213232 (0.002398)
LINK: 00:10:7B:B3:22:E0 -> 00:02:B3:26:A9:52 type=IP
IP: gw-c-5 -> hq hlen=20 TOS=00 dgramlen=32 id=0002
MF/DF=0/0 frag=0 TTL=255 proto=UDP cksum=8DCE
UDP: port 7386 -> 3629 hdr=8 data=4
DATA: ....
И так далее:
---------------------------------------------------------------------------
Packet 4
TIME: 16:32:20.213425 (0.000193)
LINK: 00:02:B3:26:A9:52 -> 00:10:7B:B3:22:E0 type=IP
IP: hq -> gw-c-5 hlen=20 TOS=00 dgramlen=544 id=7C1B
MF/DF=0/0 frag=0 TTL=64 proto=UDP cksum=CEB5
UDP: port 3629 -> 7386 hdr=8 data=516
DATA: ....tc..@..5|p..tc..@...}(..N.. |p..Tc..<...|..x|p..L..,N..
|...|x..8...Tc..<...|..x|...=...a...|.@8(...A...(...A...<...
`...H...<...`...|...|x..`...|...|x..8...|.(@A...L..,|...|x..
Tc..<.
.|..x|x..L..,|x..Tc..<...|..x|x..L..,N.. N.. .!..|..........
.|..x8`.....x8...H...K....!..|...........|..x....| .x,...A..
8} .t,..
@...8`..8...K.......8`..|..tK....?.., ..@.......|.......8!..
N.. .!..|..........$|.#xK...8..0....8..x... 9@..9...
..T..:...0T..>,.. A...9*..8..0H...9*..8..7|.I.9J..,
..@...8..
....8.......8a..K......$
---------------------------------------------------------------------------
Packet 5
TIME: 16:32:20.215741 (0.002316)
LINK: 00:10:7B:B3:22:E0 -> 00:02:B3:26:A9:52 type=IP
IP: gw-c-5 -> hq hlen=20 TOS=00 dgramlen=32 id=0003
MF/DF=0/0 frag=0 TTL=255 proto=UDP cksum=8DCD
UDP: port 7386 -> 3629 hdr=8 data=4
DATA: ....
[skip]
И почти сразу:
---------------------------------------------------------------------------
Packet 20
TIME: 16:32:20.234720 (0.000181)
LINK: 00:02:B3:26:A9:52 -> 00:10:7B:B3:22:E0 type=IP
IP: hq -> gw-c-5 hlen=20 TOS=00 dgramlen=544 id=DA57
MF/DF=0/0 frag=0 TTL=64 proto=UDP cksum=7079
UDP: port 3629 -> 7386 hdr=8 data=516
DATA: ...
8!..N.. .!..|.......|d.x8`.4K..9....|...8!..N.. .!..|.......
8`.5K.......|...8!..N.. .!..|.......|d.x8`.%K.......|...8!..
N.. .!..|.......8`."K.......|...8!..N.. .!..|.......|d.x8`.#
K.......|...8!..N.. .!..|.......8`..K..}....|...8!..N.. .!..
|.......8`..K..Y....|...8!..N.. .!..|.......8`..K..5....|...
8!..N.. .!..|.......8`..K.......|...8!..N.. .!..|.......8`.$
K.......|...8!..N.. .!..|.......8`.'K.......|...8!..N.. .!..
|.......8`.*K.......|...8!..N.. .!..|.......|`.x|.#x|.+x8`.+
|..x}%KxK..m....|...8!..N.. .!..
---------------------------------------------------------------------------
Packet 21
TIME: 16:32:20.235361 (0.000641)
LINK: 00:10:7B:B3:22:E0 -> 00:02:B3:26:A9:52 type=IP
IP: gw-c-5 -> hq hlen=20 TOS=00 dgramlen=48 id=000B
MF/DF=0/0 frag=0 TTL=255 proto=UDP cksum=8DB5
UDP: port 7386 -> 3629 hdr=8 data=20
DATA: ....Buffer overflow.
---------------------------------------------------------------------------
Конец.
И чего делать? Загрузчик в ROM 11.3(2)XA2, другого взять негде.
После загрузки из flash IOS уже нормально читает с tftp.
Eugene
--- slrn/0.9.7.4 (FreeBSD)
* Origin: Svyaz Service JSC (2:5006/1@fidonet)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
| Тема: |
Автор: |
Дата: |
|
buffer overflow |
Eugene Grosbein |
03 May 2003 16:48:28 |
|
|
