Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1996_4

Bugtraq archives for 4th quarter (Oct-Dec) 1996: Re: ppl bugs

Re: ppl bugs

Stefan Zehl (secwg.camelot.de)
Mon, 4 Nov 1996 20:44:09 GMT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: SGI Security Coordinator: "SGI Security Advisory 19961101 - Vulnerabilities in systour and"
Previous message: Walter Misar: "ppl bugs"
Maybe in reply to: Walter Misar: "ppl bugs"

In article <199611040954.EAA08420netspace.org>, Walter Misar wrote:
> This two questions came to mind after reading about the ppl holes:
>
> Why is it necessary that /usr/spool/ppl is world writable ?
>
> Why does ppl dump core on buffer overflow ? Does it perhaps change it's real
> uid to 0 ?
Thats at least written on the Hp-Bug Web-Page
: ... the setuid root ppl conveniently turns your real uid to 0 before
: doing the string manipulation, and ...

CU,
        Sec

--
 Jeder Tag an dem du nicht lächelst, ist ein verlorener Tag. (C. Chaplin)
          Hiroshima '45    Tsjernobyl '86   Windows '95
          Black holes are where GOD is dividing by zero

Next message: SGI Security Coordinator: "SGI Security Advisory 19961101 - Vulnerabilities in systour and"
Previous message: Walter Misar: "ppl bugs"
Maybe in reply to: Walter Misar: "ppl bugs"