Re: Re: [Full-Disclosure] /usr/bin/trn local root exploit

• Previous message: Frank Thyes: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• In reply to: msh at datakill: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• Next in thread: Z z a g o r R: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 26 Jan 2005 13:42:50 +0100
To: full-disclosure@lists.netsys.com

Who would install trn setuid anyway?

Regards,
Honza Vlach

On Wed, Jan 26, 2005 at 07:05:27AM -0500, msh at datakill wrote:
> From: msh at datakill <msh@datakill.us>
> Date: Wed, 26 Jan 2005 07:05:27 -0500
> To: full-disclosure@lists.netsys.com
> Subject: Re: [Full-Disclosure] /usr/bin/trn local root exploit
>
> I just tested this on Slackware 10 and I get nothing but Segementation
> Faults. I see that you have the RET value filled in, but how am I to
> calculate what to use for the BOO? You use 142 and 128 in the example.

-- 
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GIT/CS d- s: a-- C++++$ ULS++++$ P L+++ E--- W- N+ o? K? w-->--- O? M->+ V? PS PE Y++ PGP+++ !t 5? X++ R tv-- b++ DI+ D++ G+>+++ e h--- r++ y?
------END GEEK CODE BLOCK------
()  ascii ribbon campaign - against html mail 
/\                        - against microsoft attachments

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• application/pgp-signature attachment: stored

• Previous message: Frank Thyes: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• In reply to: msh at datakill: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• Next in thread: Z z a g o r R: "Re: [Full-Disclosure] /usr/bin/trn local root exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]