Bugtraq mailing list archives
wordperfect 8 for linux security
From: adap () ADAP ORG (Edsel Adap)
Date: Fri, 18 Dec 1998 11:47:45 -0500
Hi, I sent a similar message to Corel about this. And I figured I'd send it out here in order to prevent people from opening up their systems by installing word perfect 8 before the problem is fixed. When wordperfect 8 is installed it creates a /tmp/wpc-<hostname> directory with permissions 777. And all files inside of it are mode 666. And when these files are created, symlinks are followed. You already know what this means when root tries to install word perfect. So to those of you who are planning to install word perfect 8 for linux, don't do it as root. Pick another user for doing the job. -- Edsel Adap edsel () adap org http://www.adap.org/~edsel/ LINUX - the choice of the GNU generation "Netscape is an application which grows to fill all available memory." - me
Current thread:
- OSS nice tmp race Stefan Laudat (Dec 16)
- wordperfect 8 for linux security Edsel Adap (Dec 18)
- new tcp scan method antirez (Dec 17)
- Re: wordperfect 8 for linux security Dug Song (Dec 18)
- Re: wordperfect 8 for linux security Keith Owens (Dec 18)
- Irc: another funny stuff. In some irc clients dcc may be hijacked. awgn () COSMOS IT (Dec 19)
- ValueClick CGI Vulnerability Philip Stoev (Dec 19)
- FTP.SODRE.NET Hacked... Eggdrop Modified.. Geoffrey Huntley (Dec 19)
- Re: FTP.SODRE.NET Hacked... Eggdrop Modified.. Matt Hallacy (Dec 19)
- ip header id patched. awgn () COSMOS IT (Dec 19)
- ValueClick Ellen (Dec 19)
- Re: OSS nice tmp race Pavel Kankovsky (Dec 18)
(Thread continues...)
- wordperfect 8 for linux security Edsel Adap (Dec 18)