Insecure hardware (was Re: gets(3) nonsense)
Jonathan I. Kamens
jik at athena.mit.edu
Mon Dec 5 15:06:08 AEST 1988
In article <13203 at ncoast.UUCP> allbery at ncoast.UUCP (Brandon S. Allbery) writes:
>From what I've read, the fingerd attack was applied to Suns as well -- but
>the "wwww" address *was* sufficiently wrong, so an infected fingerd simply
>dumped core.
This is not correct. I just checked with the one of the members of
the team who disassembled the code here at MIT. He says that the
problem with the Sun version of the worm was that it was trying to use
the same hex instructions as the VAX code. This obviously wouldn't
work, since the Sun instruction set is just slightly different from
the VAX's :-).
If the author(s) of the code had bothered to figure out the stack
frame dimensions on the Sun, I'm sure he/she/they would have also
figured out the necessary Sun instructions to make it work, and vice
versa.
Jonathan Kamens
MIT Project Athena
More information about the Comp.lang.c
mailing list