Package: sqsh Version: 2.1-6 You don't even need to connect to a DB server:
$ uname -a Linux hilfy 2.6.10-1-k7 #1 Fri Mar 11 03:13:32 EST 2005 i686 GNU/Linux $ dpkg -s libc6 | grep ^Version Version: 2.3.2.ds1-22 $ sqsh -C 'select 1e70' sqsh-2.1 Copyright (C) 1995-2001 Scott C. Gray This is free software with ABSOLUTELY NO WARRANTY For more information type '\warranty' Password: Segmentation fault I think it would be hard to exploit this particular bug. However, an examination of the source reveals many fixed size arrays. Regards, Giuliano.
