[24218] in bugtraq
Re: another hanterm exploit
daemon@ATHENA.MIT.EDU (Jose Nazario)
Sat Feb 9 01:46:52 2002
Date: Sat, 9 Feb 2002 00:59:40 -0500 (EST)
From: Jose Nazario <jose@biocserver.BIOC.cwru.edu>
To: Stuart Moore <smoore@securityglobal.net>
Cc: <bugtraq@securityfocus.com>, <xperc@hotmail.com>
In-Reply-To: <3C62D5F0.619602A6@securityglobal.net>
Message-ID: <Pine.LNX.4.30.0202090057240.30181-100000@biocserver.BIOC.CWRU.Edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Thu, 7 Feb 2002, Stuart Moore wrote:
> There was a FreeBSD fix announced back in July 2002
> (FreeBSD-SA-01:41), but I haven't seen any other vendor fixes.
openbsd isn't subject to root (or privilidged) compromise by this if you
install hanterm from ports. a patch in the makefile in ports installs this
NOT suid, but 0711.
the code needs a serious review, its in pretty bad shape.
____________________________
jose nazario jose@cwru.edu
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
