Full Disclosure mailing list archives
Samba Remote Zero-Day Exploit
From: marxclou () hushmail com
Date: Sat, 06 Feb 2010 20:46:24 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dear Paul, seems like u get personal pissed about the situation or you are not able to see that this is obviously a problem. But maybe you can enlighten everybody how it is possible per "default" not to traversal a directory by cd but doing this via symlink? To put the circle the other way around, do you have an option per "default" enabled which forbids to traverse a directory? No? Regards, Marx -----BEGIN PGP SIGNATURE----- Charset: UTF8 Version: Hush 3.0 Note: This signature can be verified at https://www.hushtools.com/verify wpwEAQMCAAYFAkttxxAACgkQ3FclBRq92Beu/wP+K5HNWKjk6aQZN2nyWKWpwBf5rmnn GA279uvdCSfcW9/M+7L7nEr97pdeKG8DyVLbbX6jYlIcwpn+I77Cw2yVzoS6ZBeKrxBw 6IJ1CrmTfftJvnZRVWQ0KYXNgjHpyWQhXnFDPEq17x8/PUtd4Bi0DAaisxnO0YGMoxZy wWPwE7I= =spzD -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Samba Remote Zero-Day Exploit, (continued)
- Re: Samba Remote Zero-Day Exploit Dan Kaminsky (Feb 06)
- Re: Samba Remote Zero-Day Exploit Stefan Kanthak (Feb 08)
- Re: Samba Remote Zero-Day Exploit Dan Kaminsky (Feb 06)
- Re: Samba Remote Zero-Day Exploit Michael Wojcik (Feb 09)
- Re: Samba Remote Zero-Day Exploit Stefan Kanthak (Feb 09)
- Re: Samba Remote Zero-Day Exploit Michael Wojcik (Feb 09)
- Re: Samba Remote Zero-Day Exploit Stefan Kanthak (Feb 10)
- Re: Samba Remote Zero-Day Exploit paul . szabo (Feb 06)
- Re: Samba Remote Zero-Day Exploit Krzysztof Halasa (Feb 09)
- Re: Samba Remote Zero-Day Exploit paul . szabo (Feb 06)
- Re: Samba Remote Zero-Day Exploit David Jacoby (Feb 10)