[1894] in bugtraq
Re: OpenWindows 3 possible security problem?
daemon@ATHENA.MIT.EDU (Casper Dik)
Tue May 23 05:09:57 1995
To: Scott Barman <scott@Disclosure.COM>
Cc: bugtraq@fc.net
In-Reply-To: Your message of "Mon, 22 May 1995 15:04:42 EDT."
<Pine.SUN.3.90.950522145209.2677B-100000@di.disclosure.com>
Date: Tue, 23 May 1995 09:31:42 +0200
From: Casper Dik <casper@Holland.Sun.COM>
>While poking around the system (SPARC Classic running SunOS 4.1.3_U1)
>looking for a lost file, I stumbled across a couple of files that looked
>interesting:
>
>-rw-rw-rw- 1 scott 20 May 19 14:12 /tmp/ttyselection
>-rw-rw-rw- 1 scott 74 May 19 14:12 /tmp/winselection
>
>Both happen to look like the cut buffers from a shelltool or commandtool
>window. Both contain text that look familiar in this regard.
Yep, that's correct.
This is a bug that also exists in Solaris 2.x but is fixed in late rev
libxview patches.
Teh problem is a security problem: everyone shares the same cut buffers.
Casper
