Vulnerability Development mailing list archives
HP's OpenMail 6.0 for linux.
From: lwc () VAPID DHS ORG (Larry Cashdollar)
Date: Tue, 27 Jun 2000 18:56:53 -0000
While testing out HP's openmail as a solution for my employer I noticed it added 100+ setuid/setgid binaries to my system. I estimate because some are setgid hpoffice only and setuid/gid root.hpoffice. I dont see why all of these binaries need to be setuid. Since there are so many I thought perhaps people on the list would enjoy looking at them. http://www.ice.hp.com/cyc/om/00/index.html -- Larry
Current thread:
- Re: Another new worm???, (continued)
- Re: Another new worm??? Crispin Cowan (Jun 27)
- Re: Another new worm??? Dino Amato (Jun 28)
- dalnet 4.6.5 remote vulnerability Matt Conover (Jun 28)
- *snprinf vs strncpy (misconception) Matt Conover (Jun 28)
- Re: Another new worm??? Crispin Cowan (Jun 24)
- Re: Another new worm??? sigipp () WELLA COM BR (Jun 26)
- Re: Another new worm??? Mark Rafn (Jun 26)
- Re: Another new worm??? Blue Boar (Jun 26)
- Webramp 310e Call Back Tom Sutherland (Jun 27)
- Re: Another new worm??? Erik Debill (Jun 27)
- HP's OpenMail 6.0 for linux. Larry Cashdollar (Jun 27)
- Re: Another new worm??? Dimitry Andric (Jun 27)
- linux-ftpd 0.16 is also vulnerable Paulo Ribeiro (Jun 27)
- Re: linux-ftpd 0.16 is also vulnerable Daniel Jacobowitz (Jun 28)
- Re: Another new worm??? Dan Schrader (Jun 26)
- Re: Another new worm??? edurflinger () CORNINGDATA COM (Jun 28)
- Re: Another new worm??? Dan Schrader (Jun 28)
- Re: Another new worm??? Blue Boar (Jun 28)
- Re: Another new worm??? tschweikle () FIDUCIA DE (Jun 28)