[feel free to include in BugTraq, I haven't seen past reports for this one] Microsoft Windows Media Player v6.3 for Sparc/Solaris is available for download from http://download.microsoft.com. When you install it on Solaris (the program is distributed as an executable installer, which takes care of everything), the executables are installed as word-writable files, effectively ignoring the umask of the installer. It means that anybody with an account on the system can change those executables and put a trojan in them. People executing the program later will happily run the trojan and have their account compromised. Sam -- Samuel Tardieu -- samat_private -- http://www.rfc1149.net/sam
This archive was generated by hypermail 2b30 : Fri Oct 18 2002 - 10:22:18 PDT