[17493] in bugtraq
Re: MDKSA-2000:065 - Linux-Mandrake not affected by dump
daemon@ATHENA.MIT.EDU (Fernando Schapachnik)
Sat Nov 4 12:58:59 2000
Mime-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset=ISO-8859-1
Message-Id: <200011030204.XAA44626@ns1.via-net-works.net.ar>
Date: Thu, 2 Nov 2000 23:04:50 -0300
Reply-To: Fernando Schapachnik <fschapachnik@vianetworks.com.ar>
From: Fernando Schapachnik <fpscha@NS1.VIA-NET-WORKS.NET.AR>
X-To: Linux Mandrake Security Team <security@LINUX-MANDRAKE.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <20001102152247.A30551@mandrakesoft.com> "from Linux Mandrake
Security Team at Nov 2, 2000 03:22:47 pm"
En un mensaje anterior, Linux Mandrake Security Team escribis:
> Linux-Mandrake Security Update Advisory
> ________________________________________________________________________
>
> Package name: dump
> Date: November 2nd, 2000
> Advisory ID: MDKSA-2000:065
>
> Affected versions: None
> ________________________________________________________________________
>
> Problem Description:
>
> In some instances, if dump is suid root, it can be used to gain root
> access. Two exploits have been published to prove this.
> ________________________________________________________________________
>
> Linux-Mandrake ships dump suid root, however both exploits do not work
> under Linux-Mandrake. The end result is a shell that is suid by the
> user attempting the exploit, and not suid root which is the intended
> result.
Come on! *These* exploit not working doesn't mean you are not
vulnerable.
Regards.
Fernando P. Schapachnik
Administracisn de la red
VIA NET.WORKS ARGENTINA S.A.
fschapachnik@vianetworks.com.ar
Conmutador: (54-11) 4323-3333 - Soporte: 0810-333-AYUDA
