Re: /usr/bin/write (solaris2.x) Segmentation Fault

From: Rich Teer (richard.teer@rite-group.com)
Date: Thu Nov 15 2001 - 19:56:20 PST

Next message: Cabezon Aurélien: "Network Tool 0.2 Addon for PHPNuke vulnerable to remote command execution"

Previous message: Durell, Matthew: "RE: Digital Unix CDE dtaction vulnerability concept of proof code"
In reply to: SChoe: "/usr/bin/write (solaris2.x) Segmentation Fault"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 13 Nov 2001, SChoe wrote:

> solaris 2.7, 2.8
> ================
> $ uname -v
> Generic_106541-14

106541 isn't the Solaris 8 KJP...

Solaris 8 (at least from Generic_108528-09, I don't have
an FCS system to hand) isn't vulnerable:

	rich@mars5140# uname -a
	SunOS mars 5.8 Generic_108528-09 sun4u sparc SUNW,Ultra-1
	rich@mars5141# /usr/bin/write root `perl -e 'print "A" x 88'`
	Terminal name too long.


Ditto for the Solaris 9 Beta:

	rich@grover9141# uname -a
	SunOS grover 5.9 Beta sun4u sparc SUNW,Sun-Blade-100
	rich@grover9149# /usr/bin/write root `perl -e 'print "A" x 88'`
	Terminal name too long.

--
Rich Teer

President,
Rite Online Inc.

Voice: +1 (250) 979-1638
URL: http://www.rite-online.net

Next message: Cabezon Aurélien: "Network Tool 0.2 Addon for PHPNuke vulnerable to remote command execution"
Previous message: Durell, Matthew: "RE: Digital Unix CDE dtaction vulnerability concept of proof code"
In reply to: SChoe: "/usr/bin/write (solaris2.x) Segmentation Fault"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Nov 15 2001 - 20:19:08 PST