|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)
From: Dan Harkless (dan-bugtraq
DILVISH.SPEED.NET)Date: Thu Nov 30 2000 - 22:56:35 CST
- Next message: poke: "Re: Cisco 675 Denial of Service Attack"
- Previous message: Bronwen Lynch: "FW: SonicWALL SOHO Vulnerability (fwd)"
- Maybe reply: Dan Harkless: "Re: BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Chris Sharp <v9FAKEHALO.ORG> writes:
> well, i dont know if rcvtty is suppost to be
> setgid in general, since ive never seen it setgid
> on anything but BSDi 3.0 and 4.0. but
> none-the-less, here is a exploit i wrote for it:
In nmh (mh's actively-maintained descendant), at least, rcvtty is not
installed setgid. Not sure if there's a BSD port of nmh that makes it so,
though.
----------------------------------------------------------------------
Dan Harkless | To prevent SPAM contamination, please
dan-bugtraqdilvish.speed.net | do not mention this private email
SpeedGate Communications, Inc. | address in Usenet posts. Thank you.
- Next message: poke: "Re: Cisco 675 Denial of Service Attack"
- Previous message: Bronwen Lynch: "FW: SonicWALL SOHO Vulnerability (fwd)"
- Maybe reply: Dan Harkless: "Re: BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]