Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: traceroute-4.4BSD (slack) heap overflow

From: Dale Thatcher <dale () 88 NET>
Date: Mon, 8 Jan 2001 16:30:01 +0000
On Mon, Jan 08, 2001 at 11:54:41AM +0100, Olaf Kirch wrote:

 c.   The RESOLV_HOST_CONF variable is *not* used to specifiy
      a replacment for /etc/hosts, but for /etc/host.conf, which
      configures the resolver. Apart from that, it's been quite a
      while since the resolver library honored this variable in
      setuid programs.


I just tried this on Debian unstable (libc 2.2-9) and read my /etc/shadow

Whoops...

- Dale
Previous By Date Next
Previous By Thread Next

Current thread: