Date: Fri, 27 Jun 1997 22:59:28 +0000 From: Jason Wells <jcwells@u.washington.edu> To: freebsd-questions@freebsd.org Subject: Jargon Message-ID: <3.0.2.32.19970627225928.007ed780@jcwells.deskmail.washington.edu>
next in thread | raw e-mail | index | archive | help
While reading a freebsd document I came across this term which I have seen many times and never researched. The term is "arbitrary code" and here it is used in context. Due to its nature, the lpr program is setuid root. Unfortunately, the program does not do sufficient bounds checking on arguments which are supplied by users. As a result it is possible to overwrite the internal stack space of the program while it's executing. This can allow an intruder to execute **arbitrary code** by crafting a carefully designed argument to lpr. TNHD does not include this definition. Thanks, Jason __ __ / 0\ / 0\ Thank you * Highperformance.net ) Wannabe Sysadmin * The homeless domain )-------( Jason Wells * "Pardon me sir, spare some bandwidth?" \_____/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.2.32.19970627225928.007ed780>