BugTraq
*BSD banner INT overflow vulnerability Nov 22 2006 09:17AM
Gruzicki Wlodek (dead code crew mail ru) (1 replies)
Re: *BSD banner INT overflow vulnerability Nov 22 2006 04:02PM
Steve Shockley (steve shockley shockley net) (1 replies)
Re: *BSD banner INT overflow vulnerability Nov 23 2006 05:06AM
admin (admin ozersk com)

> Why in the world would someone add a suid bit to banner? Maybe it's a
> bug, but you had to work hard to turn it into a vulnerability.

someone (uid=0) can chmod +s and backdoor ready..

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus