[41699] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Patches available for IBM AIX flaws

daemon@ATHENA.MIT.EDU (David Litchfield)
Fri Dec 16 13:31:26 2005

Message-ID: <045f01c601cb$0e385700$5800a8c0@ngssoftware.com>
From: "David Litchfield" <davidl@ngssoftware.com>
To: <bugtraq@securityfocus.com>, <dbsec@freelists.org>
Date: Thu, 15 Dec 2005 22:58:24 -0000
MIME-Version: 1.0
Content-Type: text/plain;
	format=flowed;
	charset="iso-8859-1";
	reply-type=response
Content-Transfer-Encoding: 7bit

Correction:

> 4) There are arbitrary file data append issues in getShell and getCommand 
> in conjuction with specific settings in the malloc debug system.Both 
> getShell and getCommand are setuid root.

> Issue 4 affects AIX versions 5.3, 5.2 and 5.1.

Issue 4 affects only AIX 5.3 and not 5.2 and 5.1 as was indicated. 
Apologies!
Cheers,
David


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[41699] in bugtraq

Re: Patches available for IBM AIX flaws

daemon@ATHENA.MIT.EDU (David Litchfield)Fri Dec 16 13:31:26 2005

daemon@ATHENA.MIT.EDU (David Litchfield)
Fri Dec 16 13:31:26 2005