[17506] in bugtraq
Re: [ Hackerslab bug_paper ] HP-UX crontab temporary file
daemon@ATHENA.MIT.EDU (Ann Cantelow)
Mon Nov 6 02:19:53 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.OSF.4.21.0011041045500.27451-100000@atlas.csd.net>
Date: Sat, 4 Nov 2000 11:26:58 -0700
Reply-To: Ann Cantelow <cantelow@ATLAS.CSD.NET>
From: Ann Cantelow <cantelow@ATLAS.CSD.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <FF052F3A9DFDD211B05D0001FA7E19A10423964E@xcem-casfo-12.wellsfargo.com>
We found Dec/Compaq unpatched 4.0d vulnerable, but it was pointed out to
us that 4.0d with recommended patches is not vulnerable. 4.0g is not
vulnerable in our test, and we've been told 4.0f is not vulnerable.
Ann Cantelow
On Fri, 3 Nov 2000 perrycnd@WELLSFARGO.COM wrote:
> Tested on HP10.20 - vulnerable
> Solaris 2.5.1 - not vulnerable
> Dec 4.0d - not vulnerable
>
> perrycnd@wellsfargo.com
>
>
>
> > File : /usr/bin/crontab
> >
> > SYSTEM : HP-UX
> >
> > Tested in HP-UX 11.00
> >
> > INFO :
> >
> > There is a vulneribility in "crontab" which allows users to read all files
>
> > without attaining root or file ownership privileges.
>
