|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: BUGTRAQ ALERT: Solaris 2.x vulnerability
Dan Cross (cross
math.psu.edu)Wed, 16 Aug 1995 08:14:24 -0400
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Nathan Lawson: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- Previous message: Scott Chasin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- In reply to: Neil Readwin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- Next in thread: Neil Readwin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
> [bloop] (Scott, if you think it's worth
> posting the code for this let me know) and any of the other things that
> stash files in /tmp can be attacked. Neil.
It seems that the code is almost trivial since most programs such as these
tend to operate along the same lines and we have already seen Scott's code...
:-) However, an extremely worthwhile thing to post would be a list of setuid
programs which make use of /tmp and are exploitable in the same manner. Or,
rather, potentially exploitable...
Does anyone have such a thing?
- Dan C.
- Next message: Nathan Lawson: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- Previous message: Scott Chasin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- In reply to: Neil Readwin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"
- Next in thread: Neil Readwin: "Re: BUGTRAQ ALERT: Solaris 2.x vulnerability"