Results 1 to 7 of 7

Thread: Netdiscover

  1. #1
    Member
    Join Date
    Jun 2008
    Posts
    129

    Default Netdiscover

    Hello,

    Running Live off a 8GB OCZ DIESEL drive. T7700, GL960, 2GB Cosair ram.

    Code:
    --------
    *** buffer overflow detected ***: netdiscover terminated
    ======= Backtrace: =========
    /lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0xb7ec4548]
    
    /lib/tls/i686/cmov/libc.so.6[0xb7ec2670]
    
    /lib/tls/i686/cmov/libc.so.6[0xb7ec1d68]
    
    /lib/tls/i686/cmov/libc.so.6(_IO_default_xsputn+0xc8)[0xb7e37a18]
    
    /lib/tls/i686/cmov/libc.so.6(_IO_vfprintf+0xf4a)[0xb7e0a8da]
    
    /lib/tls/i686/cmov/libc.so.6(__vsprintf_chk+0xa4)[0xb7ec1e14]
    
    /lib/tls/i686/cmov/libc.so.6(__sprintf_chk+0x2d)[0xb7ec1d5d]
    
    netdiscover[0x804ad65]
    
    netdiscover[0x804a033]
    
    netdiscover[0x8049e39]
    
    /usr/lib/libpcap.so.0.8[0xb7f41ea9]
    
    /usr/lib/libpcap.so.0.8(pcap_loop+0x6b)[0xb7f43fbb]
    
    netdiscover[0x8049a2e]
    
    /lib/tls/i686/cmov/libpthread.so.0[0xb7f6e50f]
    
    /lib/tls/i686/cmov/libc.so.6(clone+0x5e)[0xb7eab7ee]
    ======= 
    Memory map: ========
    08048000-08085000 r-xp 00000000 00:0d 5854       
    /usr/sbin/netdiscover
    08085000-08086000 r--p 0003c000 00:0d 5854       
    /usr/sbin/netdiscover
    08086000-08097000 rw-p 0003d000 00:0d 5854       
    /usr/sbin/netdiscover
    08097000-080b8000 rw-p 08097000 00:00 0          
    [heap]
    b5da7000-b5db4000 r-xp 00000000 00:0d 855        
    /lib/libgcc_s.so.1
    b5db4000-b5db5000 r--p 0000c000 00:0d 855        
    /lib/libgcc_s.so.1
    b5db5000-b5db6000 rw-p 0000d000 00:0d 855        
    /lib/libgcc_s.so.1
    b5dc5000-b5dc6000 ---p b5dc5000 00:00 0
    b5dc6000-b65c6000 rw-p b5dc6000 00:00 0
    b65c6000-b65c7000 ---p b65c6000 00:00 0
    b65c7000-b6dc7000 rw-p b65c7000 00:00 0
    b6dc7000-b6dc8000 
    ---p b6dc7000 00:00 0
    b6dc8000-b75c8000 rw-p b6dc8000 00:00 0
    b75c8000-b75c9000 
    ---p b75c8000 00:00 0
    b75c9000-b7dca000 rw-p b75c9000 00:00 0
    b7dca000-b7f22000 r-xp 00000000 00:0d 185 
    /lib/tls/i686/cmov/libc-2.8.90.so
    b7f22000-b7f24000 r--p 00158000 00:0d 185        
    /lib/tls/i686/cmov/libc-2.8.90.so
    b7f24000-b7f25000 rw-p 0015a000 00:0d 185        
    /lib/tls/i686/cmov/libc-2.8.90.so
    b7f25000-b7f28000 rw-p b7f25000 00:00 0
    b7f28000-b7f3b000 r-xp 00000000 00:0d 5858  /usr/lib/libnet.so.1.3.0
    b7f3b000-b7f3c000 rw-p 00013000 00:0d 5858       
    /usr/lib/libnet.so.1.3.0
    b7f3c000-b7f3d000 rw-p b7f3c000 00:00 0
    b7f3d000-b7f66000 r-xp 00000000 00:0d 5856       /usr/lib/libpcap.so.0.9.8
    b7f66000-b7f67000 r--p 00028000 00:0d 5856       /usr/lib/libpcap.so.0.9.8
    b7f67000-b7f68000 rw-p 00029000 00:0d 5856       /usr/lib/libpcap.so.0.9.8
    b7f68000-b7f7d000 r-xp 00000000 00:0d 277        /lib/tls/i686/cmov/libpthread-2.8.90.so
    b7f7d000-b7f7e000 r--p 00014000 00:0d 277        /lib/tls/i686/cmov/libpthread-2.8.90.so
    b7f7e000-b7f7f000 rw-p 00015000 00:0d 277        /lib/tls/i686/cmov/libpthread-2.8.90.so
    b7f7f000-b7f81000 rw-p b7f7f000 00:00 0
    b7f8e000-b7f92000 rw-p b7f8e000 00:00 0
    b7f92000-b7fac000 r-xp 00000000 00:0d 179        
    /lib/ld-2.8.90.so
    b7fac000-b7fad000 rw-p b7fac000 00:00 0
    b7fad000-b7fae000 r--p 0001a000 00:0d 179        
    /lib/ld-2.8.90.so
    b7fae000-b7faf000 rw-p 0001b000 00:0d 179        
    /lib/ld-2.8.90.so
    bff9a000-bffaf000 rw-p bffeb000 00:00 0          
    [stack]
    ffffe000-fffff000 r-xp 00000000 00:00 0          [vdso]
    Think thats the dump correctly formated, lost the word wrap.

  2. #2
    Just burned his ISO
    Join Date
    Jan 2009
    Posts
    1

    Default

    same output here as well.

    iomega pretige 250gb

  3. #3
    Just burned his ISO
    Join Date
    Oct 2008
    Posts
    22

    Default Same here too

    I have the same problem.

  4. #4
    Very good friend of the forum Virchanza's Avatar
    Join Date
    Jan 2010
    Posts
    863

    Default

    It does the same thing in normal Ubuntu, I use Internet Prober in passive mode instead. My guess would be that there's a logical error in the netdiscover code which results in a buffer overflow in "libc".

  5. #5
    Very good friend of the forum Virchanza's Avatar
    Join Date
    Jan 2010
    Posts
    863

    Default

    I downloaded the netdiscover source code with the intention of looking for the bug and fixing it, but when I recompiled it myself, the executable file ran perfectly. I tried it a few times and it still worked fine.

    So I had a hunch, I used the "-O3" compiler option to specify maximum optimisation, and then it produced a program that crashed.

    A few years ago I wrote a program that only crashed when compiler optimisation was turned on, and my first thought at the time was that there was a bug in the compiler's optimiser. The actual bug was in my own code, I had a "sequence point violation" whereby I checked a variable's value and set it again without there being a "sequence point" in the middle. When you optimise code, a sequence point violation can turn nasty.

    Anyway, I've re-compiled netdiscover without optimisation and you can get the executable file here:

    http://virjacode.com/stuff/nd
    Ask questions on the open forums, that way everybody benefits from the solution, and everybody can be corrected when they make mistakes. Don't send me private messages asking questions that should be asked on the open forums, I won't respond. I decline all "Friend Requests".

  6. #6
    Just burned his ISO
    Join Date
    Oct 2008
    Posts
    22

    Default Thanks

    Thanks man for your solution.

  7. #7
    Member
    Join Date
    Jun 2008
    Posts
    129

    Default

    Cheers, Fixed

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •