[24249] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

SCO UnixWare 7.1.X

daemon@ATHENA.MIT.EDU (Gogel, Derryle)
Tue Feb 12 18:54:16 2002

Message-ID: <C39A52AB946DD311ACC700508B6F23DE0BCE8042@BSPEXCH2>
From: "Gogel, Derryle" <GOGELD@CITIFINANCIAL.COM>
To: bugtraq@securityfocus.com
Date: Tue, 12 Feb 2002 16:58:14 -0500
MIME-Version: 1.0
Content-Type: text/plain

Well.. Looks like a insecure file vuln exsists within the system created
file when you do the initial install of SCO.


Lets take a look here at /var/adm/isl/ifile 
root@cccy.br03D124# ls -l /var/adm/isl/ifile
-rw-r--r--    1 root     root           4691 Sep 24  1999 /var/adm/isl/ifile
And we all know the shadow file is read-only by root

Let me know what ya think!

OWNER_NAME="Derryle Gogel"
USERNAME="Derryle Gogel"
OWNER_UID="101"
USERNUM="101"
OWNER_PW_ENCRYPTED="MM6GHkuVL0Pb6"
owner_pw_len="8"
ROOT_PW_ENCRYPTED="0N9VekO0riY8w"
password_len="6"
accept_pla="true"
PKGINSTALL="NEWINSTALL"
ROOTFS="vxfs"


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[24249] in bugtraq

SCO UnixWare 7.1.X

daemon@ATHENA.MIT.EDU (Gogel, Derryle)Tue Feb 12 18:54:16 2002

daemon@ATHENA.MIT.EDU (Gogel, Derryle)
Tue Feb 12 18:54:16 2002