> This isn't a permissions problem on the directories, note that his output
> shows that the directory does have the new (ie. patched) permissions. I
> tested this on a completely patched system (patched it right before I
> tested it with the latest ones from sunsolve1). I was still able to
> replicate the exploit.
The problem with DTUSERSESSION was already posted on last
Feb 24; and by then, the "Solaris dtappgather patch" fixed the
DTUSERSESSION but not the link (directory permissions) problem,
which probably is fixed by the other patch on 2.5.x.
So, at least Solaris 2.6 (sparc) with recent patches is not
vulnerable.
--
finger spdat_private for PGP / So be easy and free
.mailcap tip of the day: / when you're drinking with me
application/ms-tnef; cat '%s' > /dev/null / I'm a man you don't meet every day
text/x-vcard; cat '%s' > /dev/null / (the pogues)
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:22:20 PDT