[18406] in bugtraq
Re: Securax Advisory 13
daemon@ATHENA.MIT.EDU (Arturo Busleiman)
Wed Jan 3 11:04:34 2001
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.3.96.1001230211258.1271A-100000@intra.net>
Date: Sat, 30 Dec 2000 21:15:21 -0300
Reply-To: Arturo Busleiman <buanzox@USA.NET>
From: Arturo Busleiman <buanzox@USA.NET>
X-To: incubus <incubus@SECURAX.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <001701c07403$d18d5bc0$8656e0d5@pandora.be>
On Mon, 1 Jan 2001, incubus wrote:
> ============================================================================
> Securax-SA-13 Security
> Advisory
> belgian.networking.security
> Dutch
> Affects: SuSE linux 6.4
> ============================================================================
> II. Impact
> ----------
>
> The impact can be pretty severe, allowing no one to log in.
Tested on Suse linux 5.2 (yes, old, but on-purpose). Not affected.
I ran the program on tty3, then tried to log unto tty4:
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[etcetcetc]I input my username and press Enter here and......
Password: ******
You have mail.
intra:/home/yo $ uname -a
Linux intra 2.0.33 #2 Thu Dec 11 14:08:32 MET 1997 i586 unknown
*> INFUSION: Alternative Punk-Pop - http://members.xoom.com/sysfork/
*> MP OnLine? EL BBS? FeedBack? -> System Fork!!! 4799-2510 TLD 24hs
*> Lista social de mail. Envia e-mail en blanco a lsb-subscribe@egroups.com
*> Panic? My kernel doesn't panic! We are doomed! DustDustDust!!!!
