Full Disclosure mailing list archives

Re: CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC

From: "KF (lists)" <kf_lists () digitalmunition com>
Date: Wed, 15 Feb 2006 08:31:15 -0500

Thats probably not a good idea...You could end up with a situation like this:http://www.idefense.com/intelligence/vulnerabilities/display.php?id=324

-KF

3.      Running the JVM setuid root.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC Leandro Meiners (Feb 15)
- Re: CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC KF (lists) (Feb 15)