Vulnerability Development mailing list archives
screen-3.9.8 vulnerable?
From: Ivan Aleksandrov <rayd () EFNET TO>
Date: Thu, 29 Mar 2001 03:43:35 +0000
screen-3.9.8 vulnerable! ? [rayd@~]$ uname -srm FreeBSD 4.2-RELEASE i386 [rayd@rayd]$ id uid=1000(rayd) gid=0(wheel) groups=0(wheel) [rayd@rayd]$ screen ./interactive-program [screen caught signal 11. (core dumped)] [rayd@rayd]$ ls -l `which screen-3.9.8` -rwsr-xr-x 1 root wheel 251366 Mar 29 01:51 /usr/bin/screen-3.9.8 [rayd@rayd]$ dmesg|tail -1 pid 701 (screen-3.9.8), uid 1000: exited on signal 6 analysis: Core was generated by `screen-3.9.8'. Program terminated with signal 11, Segmentation fault. #0 0x280a7542 in ?? () wtf? If to establish from ports by packages, it does not occur, I have not understood yet the true reason it... I think necessary to administrators to remove suid bit from screen executable file. -- Ivan Aleksandrov (Siberian Internet Company) <rayd@efnet, RAYD-RIPN, www.ukrteam.ru> Network Security Administrator
Current thread:
- screen-3.9.8 vulnerable? Ivan Aleksandrov (Mar 29)