|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] Smashing "XBoard 4.2.7(All versions)" For Fun & Profit.*Unpublish ed Local Stack Overflow Vulnerablity!
Valdis.Kletnieks
vt.edu
Date: Tue Mar 02 2004 - 14:47:05 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, 02 Mar 2004 12:01:08 +0300, d4rk <d4rksecuritylab.ru> said:
> /* or if root is your friend, u can ask him to do it. */
Never underestimate the power of social engineering. I've seen systems
r00ted by getting the admin to 'cd' over to a directory to examine a 'failing'
program. Files like .exrc, .dbxrc/.dbxinit, and .gdbinit can all be used for mischief
with an unsuspecting sysadmin....
"Yep... got an a.out here, got a core here.. 'gdb' and type 'where'. Hmm..
see right there? You got a SEGV because you had a null pointer.." (Yes, and
you, mr admin, just got someting more fun than a SEGV when that .gdbinit file
in the current directory did something.. ;)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFARPLJcC3lWbTT17ARAnYRAKC9PG/JByVODFq2SUtaj4icqZvX1wCcDsrY
oJDKr/0qm9JznBeEpgC4LIM=
=VLps
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]