Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
/bin/login gives root to group utmp

From: Paul Szabo (pszmaths.usyd.edu.au)
Date: Sun Nov 30 2008 - 13:51:11 CST

There is a group-utmp-to-root privilege escalation vulnerability in
/bin/login in Debian, and I expect in all other Linux distros.
For details and exploit please see
Currently am not aware of any group utmp issues (that could be
leveraged to get root).


Paul Szabo pszmaths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia