Re: Pine, Pico, Pilot Program Overflow bug.

• Previous message: B.K. DeLong: "Black Hat Windows Sec. Briefings CFP - Deadline 12/15"
• In reply to: uexploit xeightwo: "Pine, Pico, Pilot Program Overflow bug."
• Next in thread: Larry W. Cashdollar: "Re: Pine, Pico, Pilot Program Overflow bug."
• Reply: Larry W. Cashdollar: "Re: Pine, Pico, Pilot Program Overflow bug."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----

On Wed, 28 Nov 2001, uexploit xeightwo wrote:

> Reference examination URL: http://my.dreamwiz.com/hackingm/test.txt

	Is the pico binary typically distro'd as suid root as is listed in
the above document?  I can't imagine why it would need to be.  Seems like
a recipe for disaster.

	I know it isn't suid root on any of my Solaris or Slack boxen.

- -Jay

   (    (                                                        _______
   ))   ))   .-"There's always time for a good cup of coffee"-.   >====<--.
 C|~~|C|~~| (>----- Jay D. Dyson -- jdysonat_private -----<) |    = |-'
  `--' `--'  `---------- Si vis pacem, para bellum. ----------'  `------'

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: See http://www.treachery.net/~jdyson/ for current keys.

iQCVAwUBPAUn57lDRyqRQ2a9AQEp4gQApYtMpJRq0GP3ZHELhgnTEykDUHIdEwib
U5++TKEJIuy3Pw1PRp/jSRqkz1HYv3RiFWyavyQ8PcYFbS2jCz+32og9yKFAr9AV
rNyZcCLvAuRNaLQW2vMcRTw5T/7r2IktT2zaAH9kLWFpD7P1S+Wlkj3MmIv423Ih
ZXLqgFobtd0=
=zm1+
-----END PGP SIGNATURE-----

• Next message: Nicko Demeter: "RE: Malicious use of grc.com"
• Previous message: B.K. DeLong: "Black Hat Windows Sec. Briefings CFP - Deadline 12/15"
• In reply to: uexploit xeightwo: "Pine, Pico, Pilot Program Overflow bug."
• Next in thread: Larry W. Cashdollar: "Re: Pine, Pico, Pilot Program Overflow bug."
• Reply: Larry W. Cashdollar: "Re: Pine, Pico, Pilot Program Overflow bug."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Nov 28 2001 - 12:02:05 PST