Bugtraq mailing list archives

Re: Solaris 7 x86 lpset exploit.

From: atatat () ATATDOT NET (Andrew Brown)
Date: Wed, 26 Apr 2000 15:51:19 -0400

There is a sparc version avail for this bug, the bug was discovered by
duke some time ago.


just for people who don't know...or have forgotten...putting this:

   set noexec_user_stack = 1
   set noexec_user_stack_log = 1

in your /etc/system file protects you against this.  it doesn't fix
the bug, but it stops the effects from being quite so "bad".

--
|-----< "CODE WARRIOR" >-----|
codewarrior () daemon org             * "ah!  i see you have the internet
twofsonet () graffiti com (Andrew Brown)                that goes *ping*!"
andrew () crossbar com       * "information is power -- share the wealth."

Current thread:

Re: mtr-0.41 root exploit, (continued)
- - Re: mtr-0.41 root exploit Kris Kennaway (Apr 24)
  - Two Problems in IMP 2 Jose Nazario (Apr 24)
    - Re: Two Problems in IMP 2 Ivan E. Moore II (Apr 25)
- Solaris x86 Xsun overflow. Theodor Ragnar Gislason (Apr 24)
- Solaris 7 x86 lp exploit Theodor Ragnar Gislason (Apr 24)
  - Re: Solaris 7 x86 lp exploit Laurent LEVIER (Apr 24)
- Re: netkill - generic remote DoS attack stanislav shalunov (Apr 24)
- Solaris 7 x86 lpset exploit. Theodor Ragnar Gislason (Apr 24)
  - Re: Solaris 7 x86 lpset exploit. Laurent LEVIER (Apr 24)
    - Re: Solaris 7 x86 lpset exploit. Theodor Ragnar Gislason (Apr 25)
    - Re: Solaris 7 x86 lpset exploit. Andrew Brown (Apr 26)
    - Modifying NT credential and RAZOR's analysis of dvwsrr.dll Iván Arce (Apr 26)
    - Re: Solaris 7 x86 lpset exploit. Len Rose (Apr 26)
    - Re: Solaris 7 x86 lpset exploit. Eugene Ilchenko (Apr 26)
    - Cisco HTTP possible bug: Keith Woodworth (Apr 26)
    - Alert: Cart32 secret password backdoor (CISADV000427) Cerberus Security Team (Apr 26)
    - Re: Alert: Cart32 secret password backdoor (CISADV000427) Bill Borton (Apr 28)
    - Re: Alert: Cart32 secret password backdoor (CISADV000427) Knud Erik Højgaard (Mar 30)
    - Re: Solaris 7 x86 lpset exploit. Jor (Apr 27)
    - Re: Solaris 7 x86 lpset exploit. Casper Dik (Apr 28)
- SECURITY: [RHSA-2000:014-10] Updated piranha packages available Cristian Gafton (Apr 24)

(Thread continues...)