Vulnerability Development mailing list archives
redhat 6.1 mail
From: droplul76 () HOTMAIL COM (jan bakker)
Date: Mon, 20 Mar 2000 14:32:30 GMT
hello fello root's,
one day i found that redhat 6.1 takes not only suid bits but also guid.
you are owner of your mail file but it still belongs to the group mail
so
void(){
set suid bit to user;
set guid bit to 6;
}
compile it and move it to
/var/mail/user
chmod 4700 /var/mail/user
...
result:
reddog@home$id
uid 300(me),gid 40(users)
reddog@home$cd /var/mail
reddog@home$me
reddog@home$id
uid(300),gid 6(mail)
now you can read other people mail but,
6 is lower than 15 so at some systems you can add new users !!!
even a root user !!!
red
p.s. it is noted verry badly this becouse else newbies and dipshits use it
on schools. The good guys get the picture.
Hackers aren't the desise there the cure you have to know how to handle
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
Current thread:
- redhat 6.1 mail jan bakker (Mar 20)
- Re: redhat 6.1 mail H D Moore (Mar 22)
- Re: redhat 6.1 mail Michal Zalewski (Mar 24)
- Re: redhat 6.1 mail Christopher Rhodes (Mar 24)
- Re: redhat 6.1 mail Luis Pinto (Mar 23)
- Re: redhat 6.1 mail H D Moore (Mar 22)