Re: Severe bug in cfingerd before 1.4.0

[joey () FINLANDIA INFODROM NORTH DE (Martin Schulze)]

Stefan Chakerian wrote:
> On Tue, 10 Aug 1999, Martin Schulze wrote:
> >   A serious bug in cfingerd before version 1.4.0 has been reported.
> >   It is present in all versions of cfingerd from 1.2.0 up to any
> >   version of 1.3.2.  If configured accordingly this bug enables any
> >   local user to execute random programs with root priviledges.
>
> Cool, you can execute RANDOM programs as root?  Is that kind of like

Hmm, that should read arbitrary, sorry for my poor English.  It's not
my native language.

Regards,

        Joey

--
The MS-DOS filesystem is nice for removable media.  -- H. Peter Anvin