[7720] in bugtraq
Re: Rhino9 security advisory - rpc.pcnfsd
daemon@ATHENA.MIT.EDU (Huger, Alfred)
Wed Aug 19 22:40:54 1998
Date: Wed, 19 Aug 1998 18:01:10 -0700
Reply-To: "Huger, Alfred" <Alfred_Huger@NAI.COM>
From: "Huger, Alfred" <Alfred_Huger@NAI.COM>
X-To: Oliver Friedrichs <oliver@securenetworks.com>
To: BUGTRAQ@NETSPACE.ORG
> Both the vulnerable chmod and the su_popen functions were documented in
> the CA-96.08.pcnfsd.
>
>
[Huger, Alfred]
This is true, the CERT advisory was based off an advisory released
by Avalon Security Research. CERT
credits ASR as well as it's members (myself, Josh Daymont who found
the problem(s) and Ben Greenbaum) in
their original advisory.
Al Huger
Total Network Security
Network Associates Inc.
