Bugtraq mailing list archives
Re: Exploiting Zolaris 2.4 ?? :)
From: casper () holland Sun COM (Casper Dik)
Date: Tue, 6 Aug 1996 09:07:36 +0200
Set-uid/set-gid programs shouldn't dump core. They don't in Solaris 2.5/2.5.1, but did under some circumstances in 2.4. This is fixed in a later kernel jumbo patch (-35 for SPARC)Not true. SunOS phoebe 5.4 Generic_101945-38 sun4m sparc very happily dumped core on dmesg.
Let me rephrase: On Solaris 2.4 systems with kernel jumbo patch -35 or later set-gid programs will not core dump, unless you're in the group the program is set-gid too. I..e, if you're in group sys, programs set-gid sys can be made to core dump. If you're not in group sys, there's tons of prgrams to test with (netstat, dmesg, etc) If you're not in group mail, try mailx. If you're not in group tty, try wall (write(1) catches the interrupt) Casper
Current thread:
- Exploiting Zolaris 2.4 ?? :) Aleph One (Aug 03)
- Re: Exploiting Zolaris 2.4 ?? :) Casper Dik (Aug 04)
- Re: Exploiting Zolaris 2.4 ?? :) David DeSimone (Aug 04)
- Re: Exploiting Zolaris 2.4 ?? :) Grant Kaufmann (Aug 05)
- Re: Exploiting Zolaris 2.4 ?? :) Casper Dik (Aug 06)
- problems in /usr/Cadmin/bin for IRIX 5.3 Grant Kaufmann (Aug 05)
- CERT Advisory CA-96.16 - Vulnerability in Solaris admintool CERT Advisory (Aug 05)
- Re: group-setuid core hole Justin Mason (Aug 06)
- problems in /usr/Cadmin/bin for IRIX 5.3: EXPLOIT Grant Kaufmann (Aug 06)
- CERT Advisory CA-96.17 - Vulnerability in Solaris vold CERT Advisory (Aug 06)
- Re: Exploiting Zolaris 2.4 ?? :) Casper Dik (Aug 04)