[4754] in bugtraq
Re: /cgi-bin/handler - more notes
daemon@ATHENA.MIT.EDU (Ariel Biener)
Fri Jun 20 21:28:26 1997
Date: Fri, 20 Jun 1997 22:58:32 +0300
Reply-To: Ariel Biener <ariel@FIREBALL.TAU.AC.IL>
From: Ariel Biener <ariel@FIREBALL.TAU.AC.IL>
X-To: Razvan Dragomirescu <drazvan@kappa.ro>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.3.95.970620210512.648G-200000@fireball.tau.ac.il>
On Fri, 20 Jun 1997, Ariel Biener wrote:
On Thu, 19 Jun 1997, Razvan Dragomirescu wrote:
[.snip.]
> So far, IRIX versions 5.3, 6.2, and now 6.3 are vulnerable.
> Anyone on IRIX 6.4? :) (What does it run on BTW?)
I have a 6.4 (it runs on Origin, and a version of 6.4 is supposed to come
out for other SGI machines), and the handle cgi-bin looks similar to what
you described. IRIX 6.4 is also vulnerable to this exploit.
--Ariel
>
> Be good.
> Razvan
> -------------------------------------------------------------------------------
> RazvanDragomirescu Organization: KappaNet E-Mail: drazvan@kappa.ro,
> drazvan@romania.ro Alternate E-mail: drazvan@iname.com, drazvan@guv.ro,
> drazvan@pub.ro, drazvan@lbi.ro Phone: +40-1-6866621 NIC-HANDLE: RD1604
> RIPE-HANDLE: RD38-RIPE
> NO CARRIER
>
> "Smile, tomorrow will be worse" (Murphy)
> -------------------------------------------------------------------------------
>
+---------------------------------------------------------+
| Ariel Biener |
| e-mail: ariel@post.tau.ac.il Work ph: 03-6406086 |
+---------------------------------------------------------+
