[12820] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

WebSphere protections from installation

daemon@ATHENA.MIT.EDU (Martin Peter)
Thu Dec 2 14:38:03 1999

Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id:  <199912021258.NAA15038@chr7ca99.swissre.ch>
Date:         Thu, 2 Dec 1999 14:00:56 +0100
Reply-To: Martin Peter <srzpem@SWISSRE.CH>
From: Martin Peter <srzpem@SWISSRE.CH>
X-To:         BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM

hello,
On solaris (maybe also AIX) the installation of WebSphere from IBM
installs a deinstallation shell script in /usr/bin with protection 777.
This script is also called by 'pkgrm', which has to be issued by
root. The script can therefore be easily used for placing a troian
horse etc. Besides this dangerous protection settings, WebSpher places
GIF, lst and db files in /usr/bin and all directories of WebSpher are 777.

cheers
martin
 _________   ________________________________________________________________
|_________|  Dr. Martin Peter               internet:  m.peter@ieee.org
 _   _   _
| | | | | |  Swiss Re
| | | | | |  Mythenquai 50/60
|_| |_| |_|  8022 Zuerich / Switzerland


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[12820] in bugtraq

WebSphere protections from installation

daemon@ATHENA.MIT.EDU (Martin Peter)Thu Dec 2 14:38:03 1999

daemon@ATHENA.MIT.EDU (Martin Peter)
Thu Dec 2 14:38:03 1999