Vulnerability Development mailing list archives

Re: BSD chfn bug

From: venglin () FREEBSD LUBLIN PL (Przemyslaw Frasunek)
Date: Tue, 21 Dec 1999 18:51:16 +0100


On 20-Dec-99 Pavol Luptak wrote:

When you run chfn (chfn/chsh/chpass is the same binary on FreeBSD), temporary
file in /etc/pw.???? will touch, external editor will be execute
(env.variable $EDITOR) with uid of user running chfn. Edit your parameters,
delete all characters on the last line in the editor (Other information:
entry). After this,
chfn will crash. No core dumped.


I can't reproduce it on 3.3-STABLE and 3.4-STABLE. Give more details about your
environment.

---
* Fido: 2:480/124 ** WWW: FreeBSD.lublin.pl/~venglin ** GSM: +48-601-062409 *
* Inet: venglin () FreeBSD lublin pl ** PGP: D48684904685DF43 EA93AFA13BE170BF *

Current thread:

Idiocy "exploit" Roy Wilson (Dec 01)
- Re: Idiocy "exploit" Blue Boar (Dec 01)
  - Re: Idiocy "exploit" Joel Eriksson (Dec 03)
  - Owning privileged processes under UnixWare Tellier, Brock (Dec 06)
    - Re: Owning privileged processes under UnixWare Elias Levy (Dec 06)
    - Re: Owning privileged processes under UnixWare Blue Boar (Dec 07)
    - rpcclient 2.0.5a crashed services.exe Blue Boar (Dec 13)
    - Wireless LANs ? Sebastian Andersson (Dec 14)
    - [Fwd: rpcclient 2.0.5a crashed services.exe] Blue Boar (Dec 15)
    - BSD chfn bug Pavol Luptak (Dec 20)
    - Re: BSD chfn bug Przemyslaw Frasunek (Dec 21)
    - Re: BSD chfn bug Warner Losh (Dec 21)
    - Re: BSD chfn bug Tellier, Brock (Dec 23)
    - Re: BSD chfn bug Stanislav N. Vardomskiy (Dec 25)
    - Re: BSD chfn bug Michal Zalewski (Jul 21)
    - ssh quirks... Scott D. Yelich (Dec 26)
    - Re: ssh quirks... Ryan Permeh (Dec 27)
    - Re: ssh quirks... Scott D. Yelich (Dec 27)
    - Re: ssh quirks... C.J. Oster (Dec 27)
    - Re: ssh quirks... Blue Boar (Dec 27)
    - Re: ssh quirks... Ralph the Wonder Llama (Dec 27)

(Thread continues...)