Bugtraq mailing list archives

Re: TESO advisory -- wmcdplay

From: kris () HUB FREEBSD ORG (Kris Kennaway)
Date: Sat, 11 Mar 2000 23:49:56 -0800


On Sat, 11 Mar 2000 krahmer () CS UNI-POTSDAM DE wrote:

    Among the vulnerable distributions (if the package is installed) are the
    following systems:

      Debian/GNU Linux 2.1, wmcdplay 1.0beta1-2
      Halloween Linux Version 4


FreeBSD does not install this port setuid, so it is not vulnerable.

Kris

----
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe () alum mit edu>

Current thread:

TESO advisory -- wmcdplay krahmer () CS UNI-POTSDAM DE (Mar 11)
- Our old friend Firewall-1 Chris Brenton (Mar 11)
  - Re: Our old friend Firewall-1 Hugo.van.der.Kooij () CAIW NL (Mar 14)
    - Re: Our old friend Firewall-1 Chris Brenton (Mar 15)
  - TESO & C-Skills development advisory -- imwheel Sebastian (Mar 16)
    - Re: TESO & C-Skills development advisory -- imwheel WHiTe VaMPiRe (Mar 19)
- Re: TESO advisory -- wmcdplay Kris Kennaway (Mar 11)
- CSS Exploits + RDS (IE5) Shane Hird (Mar 12)
- Advisory Update: ServerIron TCP/IP predictability fixed Andrew van der Stock (Mar 12)
  - Exploit for Mandrake 6.1 (PAM/userhelper bug) Paulo Ribeiro (Mar 14)
    - Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Darron Froese (Mar 17)
    - Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Matt Davis (Mar 17)
    - Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Jeremy Gault (Mar 21)
  - Oracle Web Listener 4.0.x Cerberus Security Team (Mar 14)
  - Re: Advisory Update: ServerIron TCP/IP predictability fixed H D Moore (Mar 14)
    - Re: Advisory Update: ServerIron TCP/IP predictability fixed Max Vision (Mar 16)
    - FreeBSD Security Advisory: FreeBSD-SA-00:07.mh [REVISED] FreeBSD Security Officer (Mar 19)

(Thread continues...)