> This isn't a permissions problem on the directories, note that his output > shows that the directory does have the new (ie. patched) permissions. I > tested this on a completely patched system (patched it right before I > tested it with the latest ones from sunsolve1). I was still able to > replicate the exploit. The problem with DTUSERSESSION was already posted on last Feb 24; and by then, the "Solaris dtappgather patch" fixed the DTUSERSESSION but not the link (directory permissions) problem, which probably is fixed by the other patch on 2.5.x. So, at least Solaris 2.6 (sparc) with recent patches is not vulnerable. -- finger spdat_private for PGP / So be easy and free .mailcap tip of the day: / when you're drinking with me application/ms-tnef; cat '%s' > /dev/null / I'm a man you don't meet every day text/x-vcard; cat '%s' > /dev/null / (the pogues)
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:22:20 PDT