[7545] in bugtraq
Re: irix-6.2 "at -f" vulnerability
daemon@ATHENA.MIT.EDU (Dmitry Yu. Bolkhovityanov)
Thu Aug 6 13:37:36 1998
Date: Thu, 6 Aug 1998 11:27:57 +0700
Reply-To: "Dmitry Yu. Bolkhovityanov" <D.Yu.Bolkhovityanov@INP.NSK.SU>
From: "Dmitry Yu. Bolkhovityanov" <D.Yu.Bolkhovityanov@INP.NSK.SU>
To: BUGTRAQ@NETSPACE.ORG
On 5 Aug 98 at 6:24, rdump@RIVER.COM wrote:
> This deserves passing on. SGI has a patch for the problem, but apparently
> hasn't publicized the details.
>
> -------
> Subject: irix-6.2 "at -f" vulnerability
>
> The irix-6.2 "at -f" vulnerability was mentioned on BUGTRAQ a while back. [1]
> Unfortunately SGI has not issued an advisory on this, nor does it appear
> in their security patches list at www.sgi.com as of Aug 4, although a
> patch *has* been made available.
>
> The patch number is 3184 and those with SGI Surfzone IDs can get it
> by searching for "3184" at SGI's web site. The top-level description
> says it is for 6.4, but the patch README mentions 6.2 bugs which are
> patched.
Irix 6.5 (6.5-BETA-1274425944) is also vulnerable.
"at -f /etc/shadow now + 1 minute" gently mails you the encrypted passwords.
___________________________________________________________________________
Dmitry Yu. Bolkhovityanov
BINP RAS
