Full Disclosure mailing list archives
Re: CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC
From: "KF (lists)" <kf_lists () digitalmunition com>
Date: Wed, 15 Feb 2006 08:31:15 -0500
Thats probably not a good idea... You could end up with a situation like this: http://www.idefense.com/intelligence/vulnerabilities/display.php?id=324
-KF
3. Running the JVM setuid root.
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC Leandro Meiners (Feb 15)
- Re: CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC KF (lists) (Feb 15)