jorge> Sometime ago was published in bugtraq that a vulnerabily existed in the jorge> msgchk program, which is installed suid root in redhat 5.0: jorge> msgchk -host `perl -e 'print "A" x 2000'` jorge> leads to a segfault, which can be exploited to get root access. This vulnerability is not present when using mh-6.8.4-6 in RH 5. msgchk ends with msgchk: argument AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAA (2000 times) too long Grtz EJ -- +--------------------+ There's only one rule: | Erwin J. van Eijk | The golden rule. | eijkat_private | He who owns the gold, rules. +--------------------+
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:53:32 PDT