Re: [Hackerslab bug_paper] Solaris chkperm buffer overflow

From: Darren Reed (avalonat_private)
Date: Thu Jan 06 2000 - 15:06:31 PST

Next message: ckat_private: "Re: Hotmail security hole - injecting JavaScript using <IMG"

Previous message: Max Vision: "Phorum 3.0.7 exploits and IDS signatures"
Maybe in reply to: 김용준 KimYongJun (99졸업): "[Hackerslab bug_paper] Solaris chkperm buffer overflow"
Next in thread: Theodor Ragnar Gislason: "Re: [Hackerslab bug_paper] Solaris chkperm buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In some mail from "김용준 KimYongJun (99졸업)", sie said:
>
> [Hackerslab bug_paper] Solaris chkperm buffer overflow
>
>
> File   :   /usr/vmsys/bin/chkperm
>
> SYSTEM :   Solaris 2.x

How amusing.

On of my Solaris7 box's (incidently was pre-installed by Sun) doesn't
appear to have SUNWfac installed.  Those that I did myself (complete
OS install) do.

Seems you might be able to do a "pkgrm SUNWfac" and just delete it unless
you actually make use of it.

% grep chkperm /var/sadm/install/contents
/usr/vmsys/bin/chkperm f none 6755 bin bin 10080 40420 904647701 SUNWfac
% pkginfo SUNWfac
system      SUNWfac        Framed Access Command Environment

Darren

Next message: ckat_private: "Re: Hotmail security hole - injecting JavaScript using <IMG"
Previous message: Max Vision: "Phorum 3.0.7 exploits and IDS signatures"
Maybe in reply to: 김용준 KimYongJun (99졸업): "[Hackerslab bug_paper] Solaris chkperm buffer overflow"
Next in thread: Theodor Ragnar Gislason: "Re: [Hackerslab bug_paper] Solaris chkperm buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:27:05 PDT