[3747] in bugtraq
Re: Solaris 2.x Vulnerability [/usr/vmsys/bin/chkperm]
daemon@ATHENA.MIT.EDU (Paul B. Henson)
Thu Dec 5 16:29:16 1996
Date: Thu, 5 Dec 1996 13:16:39 -0800
Reply-To: pbhenson@csupomona.edu
From: "Paul B. Henson" <henson@intranet.csupomona.edu>
X-To: Kevin.L.Prigge-2@tc.umn.edu
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <32a71a943760002@noc.tc.umn.edu> (message from Kevin L Prigge on
Thu, 05 Dec 1996 12:55:16 -0600)
> Platform: Solaris 2.4, 2.5, 2.5.1, other System V derived
> systems with the FACE package installed
I tried your example on three different Solaris 2.5 machines with varying
patch levels. On all of them, after setting up the environment as
specified, running the chkperm command resulted in an error message, and no
.rhosts file was created in /usr/bin.
-----
% /usr/vmsys/bin/chkperm -l -u foo
Error creating <gibberish characters>
-----
Was anyone able to successfully reproduce this exploit?
--
Paul Henson | System Administrator | Cal Poly Pomona | (909) 869-3781
pbhenson@csupomona.edu | finger henson@brick.dce.csupomona.edu for PGP key
