|
|
BugTraq
Debian netkit telnetd vulnerability Sep 18 2004 07:57PM Michal Zalewski (lcamtuf ghettot org) (1 replies) Re: Debian netkit telnetd vulnerability Sep 20 2004 11:11PM Solar Designer (solar openwall com) (1 replies) |
|
Privacy Statement |
> On Sat, Sep 18, 2004 at 09:57:19PM +0200, Michal Zalewski wrote:
> > Exposure:
> >
> > Remote root compromise through buffer handling flaws
>
> FWIW, some (two?) distributions have privsep'ed telnetd by now, where
> the immediate impact of this flaw (if it were present there) would be
> code execution as pseudo-user "telnetd" chrooted to /var/empty. (*)
Debian's telnetd runs as user telnetd, though it does not chroot to
/var/empty.
--
- mdz
[ reply ]