From owner-freebsd-security Thu Dec 19 00:12:34 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id AAA08025 for security-outgoing; Thu, 19 Dec 1996 00:12:34 -0800 (PST) Received: from gw-nl1.philips.com (gw-nl1.philips.com [192.68.44.33]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id AAA08019 for ; Thu, 19 Dec 1996 00:12:32 -0800 (PST) Received: (from nobody@localhost) by gw-nl1.philips.com (8.6.10/8.6.10-0.994n-08Nov95) id JAA17145; Thu, 19 Dec 1996 09:12:24 +0100 Received: from unknown(130.139.36.3) by gw-nl1.philips.com via smap (V1.3+ESMTP) with ESMTP id sma016984; Thu Dec 19 09:11:37 1996 Received: from bsd.lss.cp.philips.com (bsd.lss.cp.philips.com [130.144.199.33]) by smtprelay.nl.cis.philips.com (8.6.10/8.6.10-1.2.1m-961216) with SMTP id JAA23120; Thu, 19 Dec 1996 09:11:36 +0100 Received: by bsd.lss.cp.philips.com (8.8.3/1.63) id JAA27696; Thu, 19 Dec 1996 09:11:36 +0100 (MET) From: Guido.vanRooij@nl.cis.philips.com (Guido van Rooij) Message-Id: <199612190811.JAA27696@bsd.lss.cp.philips.com> Subject: Re: cron [FreeBSD-SA-96:20.stack-overflow] To: steve@edmweb.com (Steve Reid) Date: Thu, 19 Dec 1996 09:11:36 +0100 (MET) Cc: security@freebsd.org In-Reply-To: from Steve Reid at "Dec 18, 96 10:11:05 pm" X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Steve Reid wrote: > > Topic: unauthorized access via buffer overruns > > cron, crontab, ppp > > Category: core > > Module: cron, crontab, ppp > > What is the nature of the problem with cron? If a user doesn't have > access to crontab files, can they somehow cause buffer overflows in the > running process??? > If a user is allowed to run crontab you are in trouble. See the exploits recently posted on various lists, among which this list and Bugtraq. -Guido