|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-disclosure] PS Information Leak on HP True64 Alpha OSF1 v5.1 1885
From: Andrea \ (bunker
fastwebnet.it)
Date: Tue Feb 06 2007 - 05:44:21 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[After months of silence from the "HP Software Security Response Team"]
-Type: Information leak
-Risk: low
-Author: Andrea "bunker" Purificato - http://rawlab.mindcreations.com
-Description: the "ps" command (also /usr/ucb/ps) on HP OSF1 v5.1 Alpha,
developed without an eye to security, allows unprivileged users to see
values of all processes environment variables.
It's something similar to "raptor_ucbps" (by Marco Ivaldi) for Solaris.
I've tested it only on OSF1 v5.1 1885.
If you remove bit suid from executable, "ps" doesn't work correctly.
-Code: http://rawlab.mindcreations.com/codes/exp/nix/osf1true64ps.ksh
Bye,
--
Andrea "bunker" Purificato
+++++++++++[>++++++>+++++++++++++++++++++++++++++++++>++++
++++++<<<-]>.>++++++++++.>.<----------.>---------.<+++++++.
http://rawlab.mindcreations.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]