Remotish / localish exploit. I wrote this last night, unaware someone else was going to post something today. Here is another exploit for the format string problem in cfingerd<=1.4.3, using a slightly different method for exploiting it. Anti script-kiddied by me being lazy. Exploit redirects fopen() call to popen() and executes code from ~/.nofinger Read the comments. -- zen-parse M4D PR0PZ T0 : Steven for showing me da bugz noid 4 b3in6 7h3r3 wh3n no1 3153 w4z grue 4 lurking, g00bER 4 something and the rest of #roothat @ irc.pulltheplug.com 4150 70 mp3.com 4 http://mp3.com/cosv
This archive was generated by hypermail 2b30 : Wed Jul 11 2001 - 16:45:35 PDT