Re: Nasty security hole in "lprm"

From: Raymond Dijkxhoorn (raymondat_private)
Date: Mon Apr 20 1998 - 00:54:56 PDT

Next message: Aleph One: "SECURITY: procps 1.2.7 fixes security hole"

Previous message: the_coyoteat_private: "Webramp M3 login info"
Maybe in reply to: Chris Evans: "Nasty security hole in "lprm""
Next in thread: Ross Harvey: "Re: Nasty security hole in "lprm""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Chris,

> I've found a local->root compromise in the lprm program, as shipped
> RedHat4.2 and RedHat5.0. Other systems untested.

That is why you can get a updated lprm from the redhat site... for both
4.2 and 5.0.

Bye,

Raymond Dijkxhoorn
Technische Hogeschool Rijswijk

Next message: Aleph One: "SECURITY: procps 1.2.7 fixes security hole"
Previous message: the_coyoteat_private: "Webramp M3 login info"
Maybe in reply to: Chris Evans: "Nasty security hole in "lprm""
Next in thread: Ross Harvey: "Re: Nasty security hole in "lprm""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:49:39 PDT