|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: local root on linux 2.2.15
From: Tomasz Grabowski (cadence
APOLLO.ACI.COM.PL)Date: Thu Jun 08 2000 - 14:54:51 CDT
- Next message: HP S/W Security Team: "Re: HP-UX SNMP daemon vulnerability"
- Previous message: Michal Zalewski: "p0f - passive os fingerprinting tool"
- In reply to: Wojciech Purczynski: "Re: local root on linux 2.2.15"
- Next in thread: Philip Guenther: "Re: local root on linux 2.2.15"
- Next in thread: Rogier Wolff: "Re: local root on linux 2.2.15"
- Reply: Tomasz Grabowski: "Re: local root on linux 2.2.15"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> > I did not discover this bug, I only extrapolated from the small info I had:
> > 'it has to do with capsuid' 'sendmail is vulnerable, crond is not'. Some
> > reading of the kernel source then suggested the above to me, which has been
> > confirmed by a more knowledgeable source.
Crontab IS vulnerable, but it will only give you egid=0 (at least at
RedHat 5.1 with 2.2.12 kernel).
- Next message: HP S/W Security Team: "Re: HP-UX SNMP daemon vulnerability"
- Previous message: Michal Zalewski: "p0f - passive os fingerprinting tool"
- In reply to: Wojciech Purczynski: "Re: local root on linux 2.2.15"
- Next in thread: Philip Guenther: "Re: local root on linux 2.2.15"
- Next in thread: Rogier Wolff: "Re: local root on linux 2.2.15"
- Reply: Tomasz Grabowski: "Re: local root on linux 2.2.15"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]