|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: [ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic li nk
From: Ann Cantelow (cantelow
ATLAS.CSD.NET)Date: Sat Nov 04 2000 - 12:26:58 CST
- Next message: rloxley: "OpenBSD Exploit"
- Previous message: Gavin, Andrew: "Re: dos on quake1 servers"
- In reply to: perrycndWELLSFARGO.COM: "[ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic li nk"
- Reply: Ann Cantelow: "Re: [ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic li nk"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
We found Dec/Compaq unpatched 4.0d vulnerable, but it was pointed out to
us that 4.0d with recommended patches is not vulnerable. 4.0g is not
vulnerable in our test, and we've been told 4.0f is not vulnerable.
Ann Cantelow
On Fri, 3 Nov 2000 perrycndWELLSFARGO.COM wrote:
> Tested on HP10.20 - vulnerable
> Solaris 2.5.1 - not vulnerable
> Dec 4.0d - not vulnerable
>
> perrycndwellsfargo.com
>
>
>
> > File : /usr/bin/crontab
> >
> > SYSTEM : HP-UX
> >
> > Tested in HP-UX 11.00
> >
> > INFO :
> >
> > There is a vulneribility in "crontab" which allows users to read all files
>
> > without attaining root or file ownership privileges.
>
- Next message: rloxley: "OpenBSD Exploit"
- Previous message: Gavin, Andrew: "Re: dos on quake1 servers"
- In reply to: perrycndWELLSFARGO.COM: "[ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic li nk"
- Reply: Ann Cantelow: "Re: [ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic li nk"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]