[2844] in bugtraq
Re: [linux-security] BoS: CERT Advisory CA-96.12 - Vulnerability
daemon@ATHENA.MIT.EDU (Andrew Liles)
Sun Jun 30 13:17:29 1996
Date: Sun, 30 Jun 1996 06:34:20 -0400
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Andrew Liles <aliles@IntNet.net>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <Pine.NEB.3.92.960629235135.6009A-100000@zap.io.org>
On Sat, 29 Jun 1996, Brian Tao wrote:
>
> Exactly which versions of perl are susceptible to this? I tried
> it using /usr/contrib/bin/perl on a BSD/OS 2.0 system as well as
> /usr/bin/perl on FreeBSD 2.1/2.2 systems, and none gave a root shell.
It seems to work on version 4 and 5 of suidperl. A regular non-suid perl
does not have the vulnerability. So far, 3 machines that I have accounts
on (all being linux boxes) have yielded root shells, but it seems that
from the CERT advisory that most other machines that have suidperl are
vulnerable.
-Andrew Liles
aka jadin on IRC
_ ___
(_)__ ____/ (_)__ ----------------- E Pluribus UNIX -------------------
/ / _ `/ _ / / _ \ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
__/ /\_,_/\_,_/_/_//_/ /\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
|___/ aliles@IntNet.net - PGP key on request - http://www.spilk.org/jadin/ --
