Re: irix-6.2 "at -f" vulnerability

From: Dmitry Yu. Bolkhovityanov (D.Yu.Bolkhovityanovat_private)
Date: Wed Aug 05 1998 - 21:27:57 PDT

Next message: X-Force: "ISS Security Advisory: cDc BackOrifice Backdoor"

Previous message: Olaf Seibert: "Re: A way to prevent buffer overflow exploits? (was: "Any user"
Maybe in reply to: Richard Johnson: "irix-6.2 "at -f" vulnerability"
Next in thread: Klaus: "Re: irix-6.2 "at -f" vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On  5 Aug 98 at 6:24, rdumpat_private wrote:

> This deserves passing on.  SGI has a patch for the problem, but apparently
> hasn't publicized the details.
>
> -------
> Subject: irix-6.2 "at -f" vulnerability
>
> The irix-6.2 "at -f" vulnerability was mentioned on BUGTRAQ a while back. [1]
> Unfortunately SGI has not issued an advisory on this, nor does it appear
> in their security patches list at www.sgi.com as of Aug 4, although a
> patch *has* been made available.
>
> The patch number is 3184 and those with SGI Surfzone IDs can get it
> by searching for "3184" at SGI's web site.  The top-level description
> says it is for 6.4, but the patch README mentions 6.2 bugs which are
> patched.

    Irix 6.5 (6.5-BETA-1274425944) is also vulnerable.
"at -f /etc/shadow now + 1 minute" gently mails you the encrypted passwords.

___________________________________________________________________________
                                                Dmitry Yu. Bolkhovityanov
                                                BINP RAS

Next message: X-Force: "ISS Security Advisory: cDc BackOrifice Backdoor"
Previous message: Olaf Seibert: "Re: A way to prevent buffer overflow exploits? (was: "Any user"
Maybe in reply to: Richard Johnson: "irix-6.2 "at -f" vulnerability"
Next in thread: Klaus: "Re: irix-6.2 "at -f" vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:11:31 PDT