[1615] in bugtraq
Re: nfs_mount in AIX
daemon@ATHENA.MIT.EDU (Quentin Fennessy)
Wed Apr 26 16:53:05 1995
Date: Wed, 26 Apr 1995 13:04:56 -0500
From: Quentin Fennessy <Quentin.Fennessy@SEMATECH.Org>
To: rick@msc.cornell.edu
Cc: bugtraq@fc.net
> If a non-root user can mount a daemon on a directory, he can somehow
> mount something which provides him with an SUID shell. As I said,
> I have a third-party package which can be abused in this way. Since
> the problem is not the fault of the third party, I am inclined not
> to reveal more detail as to what and who.
OK -- don't reveal details. And don't bother to mention it here
on this 'full disclosure' mailling list.
Quentin
