[20490] in bugtraq
Re: IRIX /usr/lib/print/netprint local root symbols exploit.
daemon@ATHENA.MIT.EDU (Atro Tossavainen)
Fri Apr 27 20:33:11 2001
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Message-ID: <200104270948.f3R9mP405653@sirppi.helsinki.fi>
Date: Fri, 27 Apr 2001 12:48:25 +0300
Reply-To: Atro.Tossavainen@helsinki.fi
From: Atro Tossavainen <atossava@CC.HELSINKI.FI>
X-To: Dale Southard <southard1@LLNL.GOV>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <ub6bspj6zy8.fsf@zonker.llnl.gov> from Dale Southard at "Apr 26,
2001 03:47:27 pm"
Dale,
> I tested the exploit against a current IRIX release (6.5.11) and found
> it not to be vulnerable.
How exactly did you find 6.5.11 not to be vulnerable?
I tried the sploit on 6.5.10 and didn't get root. It complained about
the lack of the ListAllPrinters symbol.
Add the symbol in the sploit code, recompile, try again. 6.5.10 is
vulnerable, is 6.5.11?
--
Atro Tossavainen (Mr.) / The Institute of Biotechnology at
Systems Analyst, Techno-Amish & / the University of Helsinki, Finland,
+358-9-19158939 UNIX Dinosaur / employs me, but my opinions are my own.
< URL : http : / / www . iki . fi / atro . tossavainen / >
