Security Incidents mailing list archives
cron exploit?
From: Jeremy Hanmer <jeremy () hq newdream net>
Date: Sun, 28 Sep 2003 15:09:01 -0700
We just had a Debian (Woody) box get rooted, apparently by a cron exploit mentioned here: http://www.codon.org.uk/~mjg59/kern/jmb73bash We've contacted the package maintainer, but has anybody else seen anything like this floating around yet? It's pretty worrisome since we have a couple hundred linux boxes that must run cron for various reasons.
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- cron exploit? Jeremy Hanmer (Sep 29)
- Re: cron exploit? Pavel Kankovsky (Sep 29)
- Re: cron exploit? Matt Zimmerman (Sep 29)
- Re: cron exploit? Jeremy Hanmer (Sep 29)
- Re: cron exploit? Barry Fitzgerald (Sep 29)
- Re: cron exploit? Jeremy Hanmer (Sep 29)
- Re: cron exploit? Matt Zimmerman (Sep 29)
- Re: cron exploit? Jeremiah Cornelius (Sep 30)
- Re: cron exploit? Tim Greer (Sep 30)
- Re: cron exploit? Jeremy Hanmer (Sep 29)
- Re: cron exploit? Matt Zimmerman (Sep 29)