Bugtraq mailing list archives
Re: majordomo local exploit
From: okir () MONAD SWB DE (Olaf Kirch)
Date: Wed, 29 Dec 1999 17:22:30 +0100
While browsing the majordomo lists trying to find out if anyone is taking care of this issue, I came across another that's in their archive (appended below). The comment of Dave Wolfe was that you shouldn't let untrusted users run programs on his majordomo server. Olaf -- Olaf Kirch | --- o --- Nous sommes du soleil we love when we play okir () monad swb de | / | \ sol.dhoop.naytheet.ah kin.ir.samse.qurax okir () caldera de +-------------------- Why Not?! ----------------------- UNIX, n.: Spanish manufacturer of fire extinguishers. <STRONG>attached mail follows:</STRONG><HR NOSHADE><P><!-- body="end" --> <HR NOSHADE> <UL> <LI><STRONG>Next message:</STRONG> Shevek: "$cf Security flaw" <LI><STRONG>Previous message:</STRONG> Bryan Blackburn: "Fwd: Sun Security Bulletin #00191" <LI><STRONG>In reply to:</STRONG> Brock Tellier: "majordomo local exploit" <LI><STRONG>Reply:</STRONG> Olaf Kirch: "Re: majordomo local exploit" <LI><STRONG>Messages sorted by:</STRONG> [ date ] [ thread ] [ subject ] [ author ] </UL> <HR NOSHADE> <SMALL> This archive was generated by hypermail 2b27 : Wed Dec 29 1999 - 21:20:08 CST</EM> </EM> </SMALL> </BODY> </HTML>
Current thread:
- Fix for HP-UX automountd/autofs exploit (fwd), (continued)
- Fix for HP-UX automountd/autofs exploit (fwd) Doug Siebert (Dec 30)
- Re: Fix for HP-UX automountd/autofs exploit (fwd) LaMont Jones (Dec 31)
- vibackup.sh Loneguard (Dec 31)
- More info on MS99-061 (IIS escape character vulnerability) .rain.forest.puppy. (Dec 29)
- Follow UP AltaVista rudi carell (Dec 30)
- Re: majordomo local exploit Brock Sides (Dec 29)
- CERT Advisory CA-99-17 Denial-of-Service Tools Aleph One (Dec 29)
- Re: majordomo local exploit Christopher X. Candreva (Dec 29)
- The "Mac DoS Attack," a Scheme for Blocking Internet Connections John Copeland (Dec 29)
- Re: majordomo local exploit Olaf Kirch (Dec 29)
- Re: majordomo local exploit Spidey (Dec 29)
- Fwd: Sun Security Bulletin #00192 Bryan Blackburn (Dec 29)