SCO UnixWare 7.1.X

From: Gogel, Derryle (GOGELDat_private)
Date: Tue Feb 12 2002 - 13:58:14 PST

Next message: securityat_private: "Security Update: [CSSA-2002-SCO.4] Open UNIX, UnixWare 7: snmpd memory fault vulnerabilities"

Previous message: Jay D. Dyson: "Sun Security Bulletin #00215 (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Well.. Looks like a insecure file vuln exsists within the system created
file when you do the initial install of SCO.


Lets take a look here at /var/adm/isl/ifile 
rootat_private# ls -l /var/adm/isl/ifile
-rw-r--r--    1 root     root           4691 Sep 24  1999 /var/adm/isl/ifile
And we all know the shadow file is read-only by root

Let me know what ya think!

OWNER_NAME="Derryle Gogel"
USERNAME="Derryle Gogel"
OWNER_UID="101"
USERNUM="101"
OWNER_PW_ENCRYPTED="MM6GHkuVL0Pb6"
owner_pw_len="8"
ROOT_PW_ENCRYPTED="0N9VekO0riY8w"
password_len="6"
accept_pla="true"
PKGINSTALL="NEWINSTALL"
ROOTFS="vxfs"

Next message: securityat_private: "Security Update: [CSSA-2002-SCO.4] Open UNIX, UnixWare 7: snmpd memory fault vulnerabilities"
Previous message: Jay D. Dyson: "Sun Security Bulletin #00215 (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Feb 12 2002 - 15:52:22 PST