[4487] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: potential root exploit with help from sam (HP-UX 10.x)

daemon@ATHENA.MIT.EDU (Tim.Matthews@NESTLEGB.NESTLE.COM)
Fri May 16 14:05:31 1997

Date: 	Thu, 15 May 1997 18:09:00 +0100
Reply-To: Tim.Matthews@NESTLEGB.NESTLE.COM
From: Tim.Matthews@NESTLEGB.NESTLE.COM
X-To:         nhyamd@ASCOM.CH
To: BUGTRAQ@NETSPACE.ORG

Ok. Link to /etc/nologin.

Tim
 ----------
From: David Hyams
To: BUGTRAQ@NETSPACE.ORG
Subject: Re: potential root exploit with help from sam (HP-UX 10.x)
Date: 15 May 1997 07:51

Trevor Schroeder wrote:
>
> You've certainly got a case for a very potent DoS.  Link to any file you
want:
> /bin/sh, /etc/passwd, /bin/login, etc. and *poof* there it goes.
>

Not quite, sam only appends to the file, it doesn't truncate it.
I tried making a link to /etc/passwd and all I got was a couple of
hundred
lines of junk appended to the existing /etc/passwd file.

David Hyams


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4487] in bugtraq

Re: potential root exploit with help from sam (HP-UX 10.x)

daemon@ATHENA.MIT.EDU (Tim.Matthews@NESTLEGB.NESTLE.COM)Fri May 16 14:05:31 1997

daemon@ATHENA.MIT.EDU (Tim.Matthews@NESTLEGB.NESTLE.COM)
Fri May 16 14:05:31 1997