Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_3

Bugtraq archives for 3rd quarter (Jul-Aug) 1995: loadmodule hole

loadmodule hole

Chi-Cheong Weng (cwengalantec.com)
Thu, 28 Sep 1995 20:59:57 PDT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Julian Assange: "Re: livingston.."
Previous message: Diego Zamboni: "Re: Ray Cromwell: Another Netscape Bug (and possible security"

Hi I have an interesting question to discuss with you.
On my system (running SunOS 4.1.3), for security reason, eqvload and
evqmod-sun4c.o are removed. But /usr/openwin/loadmodule with suid bit
is still there. I have copied the  eqvload and evqmod-sun4c.o from other
machine to my system's /tmp and then ran
/usr/openwin/loadmodule /tmp/evqmod-sun4c.o /tmp/eqvload

the loadmodule complained that it could not find evqmod-sun4c.o and
eqvload under /usr/openwin/modules directory.

My question is: Does loadmodule only look into /usr/openwin/modules directory ?
Can I set up an environment variable to have loadmodule read
the modules form /tmp directory ????

Next message: Julian Assange: "Re: livingston.."
Previous message: Diego Zamboni: "Re: Ray Cromwell: Another Netscape Bug (and possible security"