[16092] in bugtraq
Re: kon2
daemon@ATHENA.MIT.EDU (Chris Evans)
Mon Aug 7 02:48:46 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.21.0008042128450.4307-100000@ferret.lmh.ox.ac.uk>
Date: Fri, 4 Aug 2000 21:36:10 +0100
Reply-To: Chris Evans <chris@FERRET.LMH.OX.AC.UK>
From: Chris Evans <chris@FERRET.LMH.OX.AC.UK>
X-To: Elias Levy <aleph1@SECURITYFOCUS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <20000804095642.G5625@securityfocus.com>
On Fri, 4 Aug 2000, Elias Levy wrote:
> ----- Forwarded message from Black Sphere <bsphere@usa.net> -----
>
> Info :
>
> Package : kon2-0.3.8
> Compromise : root
[...]
>
> else if (!strncmp ("CHARSET_REGISTRY", line, 16))
[...]
Old news. Same vulnerability is noted (along with others) in my Jun 19th
post.
There has, of course, been a slew of kon2 package updates recently. I
wonder if vendors/maintainers simply patched the single bugs in question,
or took active measures to hunt down others?
I'd love it to be demonstrated otherwise, but I bet these bugs did not
spur a proper audit, and more root compromises remain.
Cheers
Chris
