From owner-freebsd-security  Sat Sep 12 04:21:58 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id EAA23988
          for freebsd-security-outgoing; Sat, 12 Sep 1998 04:21:58 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from mail.ftf.dk (mail.ftf.dk [129.142.64.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA23981
          for <security@FreeBSD.ORG>; Sat, 12 Sep 1998 04:21:55 -0700 (PDT)
          (envelope-from regnauld@deepo.prosa.dk)
Received: from mail.prosa.dk ([192.168.100.254])
	by mail.ftf.dk (8.8.8/8.8.8/gw-ftf-1.0) with ESMTP id NAA19293;
	Sat, 12 Sep 1998 13:27:07 +0200 (CEST)
	(envelope-from regnauld@deepo.prosa.dk)
Received: from deepo.prosa.dk (deepo.prosa.dk [192.168.100.10])
	by mail.prosa.dk (8.8.8/8.8.5/prosa-1.1) with ESMTP id NAA18964;
	Sat, 12 Sep 1998 13:34:52 +0200 (CEST)
Received: (from regnauld@localhost)
	by deepo.prosa.dk (8.8.8/8.8.5/prosa-1.1) id NAA19109;
	Sat, 12 Sep 1998 13:25:12 +0200 (CEST)
Message-ID: <19980912132511.46246@deepo.prosa.dk>
Date: Sat, 12 Sep 1998 13:25:11 +0200
From: Philippe Regnauld <regnauld@deepo.prosa.dk>
To: Mark Valentine <mark@thuvia.demon.co.uk>
Cc: security@FreeBSD.ORG
Subject: file(1) exploit ? (Was: cat exploit)
References: <199809110121.CAA04444@thuvia.demon.co.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.88e
In-Reply-To: <199809110121.CAA04444@thuvia.demon.co.uk>; from Mark Valentine on Fri, Sep 11, 1998 at 02:21:41AM +0100
X-Operating-System: FreeBSD 2.2.6-RELEASE i386
Phone: +45 3336 4148
Address: Ahlefeldtsgade 16, 1359 Copenhagen K, Denmark
Organization: PROSA
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Mark Valentine writes:
> 
> file(1) isn't safe, e.g. try it on a file which starts:
> 
>   #! ^E
> 
> (Replace ^E with a real control char.)

	Wow. 

	% echo "#! ^E" >xxxxx
	% file xxxxx
	xxxxx: commands text for
	% 1;2c _
           ^ cursor here

	Obviously, that's not good.

-- 
 -[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]-

               The Internet is busy.  Please try again later.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message