|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: xscreensaver exploit for Redhat 7.3
From: Adam Gilmore (vuln
optusnet.com.au)
Date: Sat Mar 08 2003 - 02:47:24 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I don't think there are any vulnerabilities for the default installation
of RH7.3 (as far as suid root apps go). I tested this vulnerability on
xterm as well, but it seems xterm on RH7.3 drops root privileges before
it overflows. And besides, xterm isn't setuid root on RH7.3 by default.
So this isn't a *major* security risk for rh.
-----Original Message-----
From: Inode [mailto:inodemediaservice.net]
Sent: Saturday, 8 March 2003 6:46 AM
To: vuln-devsecurityfocus.com
Subject: Re: xscreensaver exploit for Redhat 7.3
Hi all,
exploit attached.
Comments are welcome.
Sincerely,
+-------------------------------------------------------------------+
| Agazzini Maurizio Tel: +39-011-32.72.100 |
| Security Analyst Fax: +39-011-32.46.497 |
| Mediaservice.net S.R.L. D.S.D. Data Security Division |
| |
| PGP Key : http://www.wayreth.eu.org/Inode.asc |
| Disclaimer: http://Mediaservice.net/disclaimer |
+-------------------------------------------------------------------+
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]