Full Disclosure mailing list archives
big security bug
From: <dnvdnv () hushmail com>
Date: Sat, 4 Feb 2006 05:52:40 +0100
ear FULL-DISCLOSURE I, Leet HaCkEr DNV has found new bug in very MutsJ used software for poplar operation system freebsd mashine. If U use CAT command you can as any user see any file from all user. This is a big infomration leek as it can show secret info from other users!! i tryed with normal user (DNV) and i get secret info from file owned by other user (ROOT)!!! i have an eksample: <insert passwd here> Also it is a big hacker error because as normal user (DNV) you can put big info in other people( ROOT) files with this command !! cat MY FILE > ROOT FILE! ThiS undermineS UNICS seCURITY! THIS IS ONE OF THE BIGGEST BUG IN WORLD NOW!! I CAL A WRANING TO UNICS SYSTEM ADMINISTRATORS ALL OVEFR!! ALL OS HAVE THIS BUG ALSO LINUX MADRIVA MANDRAGE GENTO GOOGLE HURD MINIX AMOEBA :+) I HAEV WRITTEN SHELLCODE FOR THIS EXPLOIT!! #!/bin/sh file to delete=/bin/sh path cat =/bin/cat mov %eac, file to delete mov %eip, ip adresse of victim mov %stack, "/bin/sh" push byte [r0+r1+00001112] SystemCall("C:\%SYSTEMROOT%\SYSTEM32\CMD.EXE"); cdq .food ld a,(hl) inc a cmp b bne .loose move.l [a0+],d0 push [corn] pop [corn] pop [corn] pop [corn] pop [corn] JNE .food .loose WHAT WE MUST ASC OURSELFS IS WHY IS THIS HACKERTOOL INCLUEDED IN ALL UNICES!! SUCK A DANGERUS TOOL CAN NOT BE ALOWED TO ESIST! I HAVE CONTACTED SCO BUT THEY DO NOT CARE AND I DONT UNDERSTAND DOT THEY OWN UNICS? THIS IS POC ( PROFING ORIGINAL CONNECTIONEXPLOIT ) PLZ NOT SHARE. THIS WILL CLOSE INTERNET. gREEtINGS to My BUDDIES dr303, muslim hackers for respect of religion, all men love all like muslim brothers 34d1f91fb2e514b8576fab1a75a89a6b 99754106633f94d350db34d548d6091a 0cc175b9c0f1b6a831c399e269772661 a3468774415b1d86f67b7724a8732580 Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- big security bug dnvdnv (Feb 03)