Bugtraq mailing list archives
MGE UPS Systems
From: rmurray () PC-42839 BC ROGERS WAVE CA (Ryan Murray)
Date: Sun, 12 Apr 1998 23:46:39 -0700
While on the subject of UPS software exploits, I have run across another one. MGE UPS's (http://www.mgeups.com/) Solution Pac software firstly installs as mode 666/777, which, although easy to correct, should be fixed. Next, the programs, when starting up, create lock files in /tmp: COM_init.lock MON_init.lock These files are created with mode 666, and ignore the current umask. I sent a message to MGEUPS 4 months ago with this information, but have had no reply. If you are running the software, you may want to clear /tmp at boot, at least for the lock files. Otherwise any user can turn any file on the system to 0 bytes. -- Ryan Murray (rmurray () lightspeed bc ca, rmurray () bcit bc ca) BCIT Computer Resources, Academic Services Student Proctor BCIT Computer Systems Technology Student: Data Communications Option
Current thread:
- APC UPS PowerChute PLUS exploit... Theo Schlossnagle (Apr 10)
- MGE UPS Systems Ryan Murray (Apr 12)
- Re: MGE UPS Systems Theo de Raadt (Apr 13)
- DNS Tunnel - through bastion hosts Oskar Pearson (Apr 13)
- Re: APC UPS PowerChute PLUS exploit... Richard Peters (Apr 13)
- GSM SIMs cloned ! Rop Gonggrijp (Apr 13)
- Re: APC UPS PowerChute PLUS exploit... Pascal Gienger (Apr 13)
- (follow-up) Wietse's RPCBIND Chiaki Ishikawa (Apr 13)
- <Possible follow-ups>
- Re: APC UPS PowerChute PLUS exploit... Chris Liljenstolpe - Network Engineer (Apr 12)
- Re: APC UPS PowerChute PLUS exploit... Iain P.C. Moffat (Apr 13)
- IRIX LicenseManager(1M) Vulnerabilities SGI Security Coordinator (Apr 13)
- Re: APC UPS PowerChute PLUS exploit... Rick Perry (Apr 13)
(Thread continues...)
- MGE UPS Systems Ryan Murray (Apr 12)