Security Incidents mailing list archives

cron exploit?

From: Jeremy Hanmer <jeremy () hq newdream net>
Date: Sun, 28 Sep 2003 15:09:01 -0700

We just had a Debian (Woody) box get rooted, apparently by a cron
exploit mentioned here:  http://www.codon.org.uk/~mjg59/kern/jmb73bash

We've contacted the package maintainer, but has anybody else seen
anything like this floating around yet?  It's pretty worrisome since we
have a couple hundred linux boxes that must run cron for various
reasons.

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

cron exploit? Jeremy Hanmer (Sep 29)
- Re: cron exploit? Pavel Kankovsky (Sep 29)
- Re: cron exploit? Matt Zimmerman (Sep 29)
  - Re: cron exploit? Jeremy Hanmer (Sep 29)
    - Re: cron exploit? Barry Fitzgerald (Sep 29)
    - Re: cron exploit? Jeremy Hanmer (Sep 29)
    - Re: cron exploit? Matt Zimmerman (Sep 29)
    - Re: cron exploit? Jeremiah Cornelius (Sep 30)
    - Re: cron exploit? Tim Greer (Sep 30)
    - Re: cron exploit? Matt Zimmerman (Sep 29)