[2166] in linux-security and linux-alert archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[linux-security] ipop2d vulnerability

daemon@ATHENA.MIT.EDU (Adam Kerasotes)
Fri Jun 11 03:56:59 1999

Date: Thu, 10 Jun 1999 16:25:39 -0500
To: linux-security@redhat.com
From: Adam Kerasotes <akerasotes@kerasotes.com>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com

Has anyone released  or is working on a patch yet for this pop2d
vulnerability, Our site has been hit twice this week before we found what
was causing it.

Apparently a remote user can crash pop2d out into a shell account for user
nobody.

description of the exploit and code can be found at.
	http://www.rootshell.com/archive-j457nxiqi3gq59dv/199906/sdi-pop2.c.html

Thanks

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[2166] in linux-security and linux-alert archive

[linux-security] ipop2d vulnerability

daemon@ATHENA.MIT.EDU (Adam Kerasotes)Fri Jun 11 03:56:59 1999

daemon@ATHENA.MIT.EDU (Adam Kerasotes)
Fri Jun 11 03:56:59 1999