[16862] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: format bug in agetty ??

daemon@ATHENA.MIT.EDU (Gordon Messmer)
Thu Sep 21 14:35:55 2000

Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id:  <Pine.LNX.4.21.0009201842040.16229-100000@ascension.dragonsdawn.net>
Date:         Wed, 20 Sep 2000 18:43:26 -0700
Reply-To: Gordon Messmer <yinyang@EBURG.COM>
From: Gordon Messmer <yinyang@EBURG.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <00091922270900.04194@quarks.techlinux>

On Tue, 19 Sep 2000, Carlos Eduardo Gorges wrote:

> #define debug(s) fprintf(dbf,s); fflush(dbf)
...
>                         debug(argv[i]);

Yeah, that's definitely a problem.  However, it's probably only
exploitable if agetty is installed SUID, which it shouldn't be.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[16862] in bugtraq

Re: format bug in agetty ??

daemon@ATHENA.MIT.EDU (Gordon Messmer)Thu Sep 21 14:35:55 2000

daemon@ATHENA.MIT.EDU (Gordon Messmer)
Thu Sep 21 14:35:55 2000