[21459] in bugtraq
Re: Re[2]: FreeBSD 4.3 local root, yet Linux and *BSD much better than Windows
daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)
Wed Jul 11 11:28:50 2001
Message-ID: <047701c10a04$8abfff30$2001a8c0@clitoris>
From: "Przemyslaw Frasunek" <venglin@freebsd.lublin.pl>
To: "Alexandr Dubovikov" <baron@uic-in.net>
Cc: "Georgi Guninski" <guninski@guninski.com>, <bugtraq@securityfocus.com>
Date: Wed, 11 Jul 2001 14:25:13 +0200
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
> This problem has fixed and the exploit didn't work for last
> 4.3-RELEASE FreeBSD.
Exploit *works* even for 4.3-STABLE, before correction date (2 Jul 2001):
riget:venglin:~> ./v
vvfreebsd. Written by Georgi Guninski
shall jump to bfbffe72
child=57660
Password:done
# id
uid=0(root) gid=1001(users) groups=1001(users), 99(rexec)
#
--
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw@frasunek.com ** PGP: D48684904685DF43EA93AFA13BE170BF *
