[4440] in bugtraq
Re: Bug Serious problem in NEC SOCKS server (fwd)
daemon@ATHENA.MIT.EDU (Adel Abushaev)
Sat May 10 23:08:45 1997
Date: Sat, 10 May 1997 06:47:50 +0400
Reply-To: Adel Abushaev <Adel.Abushaev@KSU.RU>
From: Adel Abushaev <Adel.Abushaev@KSU.RU>
To: BUGTRAQ@NETSPACE.ORG
On Fri, 9 May 1997, Trevor Schroeder wrote:
> The following bug is present at *least* in Socks5 beta-0.17.2 from NEC. Other
> versions haven't been tested, but they are most likely vulnerable as well
>
> >From the manpage:
> SOCKS5_PIDFILE
> Identifies the filename that stores the socks5 process ID when the
> port is a port other than 1080. When you use port 1080, socks5
> stores the PID in /tmp/socks5.pid. When you run socks5 on a port
Is it necessary to start SOCKS server with superuser privileges?
This service uses non-privileged port 1080 and it seems to be
ordinary socket-based application.
Adel.
------------------------------------------------------------------------
* The gates of excellence are surrounded by the ocean of sweat *
------------------------------------------------------------------------
