[20187] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Solaris Xsun buffer overflow vulnerability

daemon@ATHENA.MIT.EDU (Marc Maiffret)
Fri Apr 13 02:29:28 2001

MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID:  <EIEOJCKGEPCLJHGCNNOPKEAHCKAA.marc@eeye.com>
Date:         Thu, 12 Apr 2001 14:52:47 -0700
Reply-To: Marc Maiffret <marc@EEYE.COM>
From: Marc Maiffret <marc@EEYE.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <20010412122340.R19274@securityfocus.com>

Actually that was an error in our advisory.

The correct (yet correct us if we are wrong again ;-]) information is:
Solaris 7 and Solaris 8 x86 Xsun is suid
Solaris 7 and Solaris 8 Sparc Xsun is sgid

Signed,
Marc Maiffret
Chief Hacking Officer
eEye Digital Security
T.949.349.9062
F.949.349.9538
http://eEye.com/Retina - Network Security Scanner
http://eEye.com/Iris/ - Network Traffic Analyzer
"Walk on."

|-----Original Message-----
|From: Bugtraq List [mailto:BUGTRAQ@SECURITYFOCUS.COM]On Behalf Of Leif
|Sawyer
|Sent: Wednesday, April 11, 2001 9:48 AM
|To: BUGTRAQ@SECURITYFOCUS.COM
|Subject: Re: Solaris Xsun buffer overflow vulnerability
|
|Don't have a Solaris 7 box to check.  Not sure why your Solaris 8 has
|a SUID Xsun install, either.
|
|Leif


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[20187] in bugtraq

Re: Solaris Xsun buffer overflow vulnerability

daemon@ATHENA.MIT.EDU (Marc Maiffret)Fri Apr 13 02:29:28 2001

daemon@ATHENA.MIT.EDU (Marc Maiffret)
Fri Apr 13 02:29:28 2001