[21242] in bugtraq
Re: smbd remote file creation vulnerability
daemon@ATHENA.MIT.EDU (Michal Zalewski)
Thu Jun 28 16:33:22 2001
Date: Wed, 27 Jun 2001 20:11:16 -0400 (EDT)
From: Michal Zalewski <lcamtuf@bos.bindview.com>
To: Joachim Blaabjerg <styx@mailbox.as>
Cc: bugtraq@securityfocus.com
In-Reply-To: <20010626110804.58491b4c.styx@mailbox.as>
Message-ID: <Pine.LNX.4.21.0106272010300.649-100000@nimue.bos.bindview.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Tue, 26 Jun 2001, Joachim Blaabjerg wrote:
> No, not directly, but if your `su` uses PAM to authenticate users and
> PAM reacts to the spaces in the beginning of the passwd file, it
> surely has something to do with PAM. To check whether `su` uses PAM or
> not, try "ldd `which su`|grep libpam"
/etc/passwd is not the only place you might want to modify. Think of
rc.local or anything like that.
--
_____________________________________________________
Michal Zalewski [lcamtuf@bos.bindview.com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=
