[3054] in bugtraq
problems in /usr/Cadmin/bin for IRIX 5.3
daemon@ATHENA.MIT.EDU (Grant Kaufmann)
Mon Aug 5 14:13:56 1996
Date: Mon, 5 Aug 1996 16:58:20 +0200
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: Grant Kaufmann <gkaufman@cs.uct.ac.za>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
I've stumbled onto a problem with /usr/Cadmin/bin/chost and /usr/Cadmin/bin/cimport.
I'll post an exploit tomorrow, but I'd like to know why so many (17) programs in
this directory are suid? They should only be run by root anyway.
A quick fix is chmod -s /usr/Cadmin/bin/* .
--
Grant
--
http://www.cs.uct.ac.za/~gkaufman/pgp.htm
