|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: RH 6.1 / 6.2 minicom vulnerability
From: Ben Lull (blull
VALLEYLOCAL.COM)Date: Tue Aug 22 2000 - 14:47:51 CDT
- Next message: John Viega: "Re: PRNGs (was Re: machine independent protection from stack-smashingattack)"
- Previous message: Foundstone Labs: "Sun's Java Web Server Remote Command Execution on Admin Server"
- Maybe in reply to: Michal Zalewski: "RH 6.1 / 6.2 minicom vulnerability"
- Next in thread: Sylvain Robitaille: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Next in thread: Kris Kennaway: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Maybe reply: Ben Lull: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Reply: Sylvain Robitaille: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Slackware 7.0 (minicom 1.82):
plixtechnolust:/home/plix> groups
secure wheel xuser plix
plixtechnolust:/home/plix> minicom -C foo
minicom: cannot open /dev/ttyS1: Permission denied
plixtechnolust:/home/plix> ls -al foo
-rw-r--r-- 1 plix uucp 0 Aug 22 12:36 foo
plixtechnolust:/home/plix>
Slackware 7.1 (minicom 1.82.1)
plixmos:/home/plix> groups
users
plixmos:/home/plix> minicom -C foo
minicom: cannot open /dev/ttyS1: Permission denied
plixmos:/home/plix> ls -al foo
-rw-r--r-- 1 plix uucp 0 Aug 22 12:39 foo
-- Yep Slackware too using minicom 1.82 and 1.82.1
Thanks,
Ben Lull
***
* Ben Lull
* Valley Local Internet, Inc.
* Systems Administrator
***
Michal Zalewski wrote:
> On RedHat 6.1 and RedHat 6.2 boxes (I haven't found other
distributions
> vulnerable):
>
> (#)Minicom V1.83.0 (compiled Mar 7 2000)(c) Miquel van Smoorenburg
>
> [lcamtufnimue lcamtuf]$ minicom -C foo
> minicom: there is no global configuration file /etc/minirc.dfl
> Ask your sysadm to create one (with minicom -s).
>
> [lcamtufnimue lcamtuf]$ ls -l foo
> -rw-rw-r-- 1 lcamtuf uucp 0 Aug 18 12:21 foo
> ^^ ^^^^
>
> Any file can be created anywhere with uucp privledges - it will follow
> symlinks. Not nice on systems running uucp services.
>
> _______________________________________________________
> Michal Zalewski [lcamtuftpi.pl] [tp.internet/security]
> [http://lcamtuf.na.export.pl] <=--=> bash$ :(){ :|:&};:
> =-----=> God is real, unless declared integer. <=-----=
>
> -- Support your government, give Echelon / Carnivore something to
parse --
> classfield top-secret government restricted data information project
CIA
> KGB GRU DISA DoD defense systems military systems spy steal
terrorist
> Allah Natasha Gregori destroy destruct attack democracy will send
Russia
> bank system compromise international own rule the world ATSC RTEM
warmod
> ATMD force power enforce sensitive directorate TSP NSTD ORD DD2-N
AMTAS
> STRAP warrior-T presidental elections policital foreign embassy
takeover
>
--------------------------------------------------------------------------
- Next message: John Viega: "Re: PRNGs (was Re: machine independent protection from stack-smashingattack)"
- Previous message: Foundstone Labs: "Sun's Java Web Server Remote Command Execution on Admin Server"
- Maybe in reply to: Michal Zalewski: "RH 6.1 / 6.2 minicom vulnerability"
- Next in thread: Sylvain Robitaille: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Next in thread: Kris Kennaway: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Maybe reply: Ben Lull: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Reply: Sylvain Robitaille: "Re: RH 6.1 / 6.2 minicom vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]