Date: Sat, 12 Sep 1998 13:25:11 +0200 From: Philippe Regnauld <regnauld@deepo.prosa.dk> To: Mark Valentine <mark@thuvia.demon.co.uk> Cc: security@FreeBSD.ORG Subject: file(1) exploit ? (Was: cat exploit) Message-ID: <19980912132511.46246@deepo.prosa.dk> In-Reply-To: <199809110121.CAA04444@thuvia.demon.co.uk>; from Mark Valentine on Fri, Sep 11, 1998 at 02:21:41AM %2B0100 References: <199809110121.CAA04444@thuvia.demon.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Mark Valentine writes:
>
> file(1) isn't safe, e.g. try it on a file which starts:
>
> #! ^E
>
> (Replace ^E with a real control char.)
Wow.
% echo "#! ^E" >xxxxx
% file xxxxx
xxxxx: commands text for
% 1;2c _
^ cursor here
Obviously, that's not good.
--
-[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]-
The Internet is busy. Please try again later.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980912132511.46246>