Re: IRIX /usr/lib/print/netprint local root symbols exploit.

• Previous message: Francis Favorini: "Re: Tektronix (Xerox) PhaserLink 850 Webserver Vulnerability (NEW )"
• In reply to: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Next in thread: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Next in thread: Atro Tossavainen: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Reply: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dale,

> I tested the exploit against a current IRIX release (6.5.11) and found
> it not to be vulnerable.

How exactly did you find 6.5.11 not to be vulnerable?

I tried the sploit on 6.5.10 and didn't get root. It complained about
the lack of the ListAllPrinters symbol.

Add the symbol in the sploit code, recompile, try again. 6.5.10 is
vulnerable, is 6.5.11?

--
Atro Tossavainen (Mr.)               / The Institute of Biotechnology at
Systems Analyst, Techno-Amish &     / the University of Helsinki, Finland,
+358-9-19158939  UNIX Dinosaur     / employs me, but my opinions are my own.
< URL : http : / / www . iki . fi / atro . tossavainen / >

• Next message: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Previous message: Francis Favorini: "Re: Tektronix (Xerox) PhaserLink 850 Webserver Vulnerability (NEW )"
• In reply to: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Next in thread: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Next in thread: Atro Tossavainen: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Reply: Dale Southard: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 27 2001 - 17:23:30 PDT