Re: Eterm SGID utmp Buffer Overflow (Local)
From: Simon 'corecode' Schubert (corecode@corecode.ath.cx)Date: 01/14/02
- Previous message: Bojan Zdrnja: "RE: How to hide a file ? (From most people)"
- In reply to: Charles 'core' Stevenson: "Eterm SGID utmp Buffer Overflow (Local)"
- Next in thread: Charles 'core' Stevenson: "Re: Eterm SGID utmp Buffer Overflow (Local)"
- Reply: Charles 'core' Stevenson: "Re: Eterm SGID utmp Buffer Overflow (Local)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 14 Jan 2002 23:10:38 +0100 From: "Simon 'corecode' Schubert" <corecode@corecode.ath.cx> To: "Charles 'core' Stevenson" <core@bokeoa.com>
On Sun, 13 Jan 2002 07:57:57 -0700 "Charles 'core' Stevenson"
<core@bokeoa.com> wrote:
> I found this last night looking for suids to overflow. Tested on
> Debian PowerPC Unstable. Yields gid utmp from which higher priveleges
> could be gained with a little effort. I haven't looked too close but I
> think the overflow might be in imlib2.
could this be sploited under x86 as well?
i don't see a way but this doesn't say anything... what do others say?
cheerz
corecode
-- /"\ http://corecode.ath.cx/ \ / \ ASCII Ribbon Campaign / \ Against HTML Mail and News
- application/pgp-signature attachment: stored
- Previous message: Bojan Zdrnja: "RE: How to hide a file ? (From most people)"
- In reply to: Charles 'core' Stevenson: "Eterm SGID utmp Buffer Overflow (Local)"
- Next in thread: Charles 'core' Stevenson: "Re: Eterm SGID utmp Buffer Overflow (Local)"
- Reply: Charles 'core' Stevenson: "Re: Eterm SGID utmp Buffer Overflow (Local)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
