[2856] in bugtraq
Re: [linux-security] BoS: CERT Advisory CA-96.12 - Vulnerability
daemon@ATHENA.MIT.EDU (Casper Dik)
Sun Jun 30 17:28:20 1996
Date: Sun, 30 Jun 1996 22:51:55 +0200
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Casper Dik <casper@holland.Sun.COM>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: Your message of "Sun, 30 Jun 1996 14:08:52 EDT."
<Pine.LNX.3.91.960630135536.15516s-100000@inorganic5.chem.ufl.edu>
>I've tested perl 5.001 on Linux 1.2.x and IRIX 5.3 and gotten root.
>Accounts on Solaris 2.5, AIX and BSDI 2.0 systems were not testable as the
>Solaris and AIX ones had rm'd suidperl and the BSDI one had done a chmod
>0000 suidperl...so I assume they were either vulnerable or just paranoid.
On Solaris 2.x you won't get suidperl installed unless you lie to configure.
Solaris 2.x supports set-uid scripts securely and doesn't need suidperl.
(After lying to configure you can build a suidperl which is indeed
vulnerable as Solaris 2.x has POSIX saved ids.)
Casper
