[13130] in bugtraq
Re: majordomo local exploit
daemon@ATHENA.MIT.EDU (Todd C. Miller)
Wed Dec 29 08:09:03 1999
Message-Id: <199912290703.AAA05209@xerxes.courtesan.com>
Date: Wed, 29 Dec 1999 00:03:01 -0700
Reply-To: "Todd C. Miller" <Todd.Miller@COURTESAN.COM>
From: "Todd C. Miller" <Todd.Miller@COURTESAN.COM>
X-To: Brock Tellier <btellier@USA.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Your message of "Tue, 28 Dec 1999 20:47:44 CST."
<19991229024744.23364.qmail@nwcst292.netaddress.usa.net>
For those using perl 5.x, you can use sysopen() instead of the "magic"
perl open() to fix this.
- todd
--- resend Thu Aug 19 10:12:03 1999
+++ resend+ Tue Dec 28 23:55:39 1999
@@ -58,7 +58,7 @@
if ($ARGV[0] =~ /^\@/) {
$fn = shift(@ARGV);
$fn =~ s/^@//;
- open(AV, $fn) || die("open(AV, \"$fn\"): $!\nStopped");
+ sysopen(AV, $fn, O_RDONLY) || die("sysopen(AV, \"$fn\", O_RDONLY): $!\nStopped");
undef($/); # set input field separator
$av = <AV>; # read whole file into string
close(AV);
