From owner-freebsd-security Fri Jan 12 18:45:46 2001 Delivered-To: freebsd-security@freebsd.org Received: from citusc.usc.edu (citusc.usc.edu [128.125.38.123]) by hub.freebsd.org (Postfix) with ESMTP id 5187637B698 for ; Fri, 12 Jan 2001 18:45:22 -0800 (PST) Received: (from kris@localhost) by citusc.usc.edu (8.9.3/8.9.3) id SAA25205; Fri, 12 Jan 2001 18:45:29 -0800 Date: Fri, 12 Jan 2001 18:45:29 -0800 From: Kris Kennaway To: Cy Schubert - ITSD Open Systems Group Cc: freebsd-security@FreeBSD.ORG Subject: Re: [!H] Tcpdump 3.5.2 remote root vulnerability (fwd) Message-ID: <20010112184529.B25168@citusc.usc.edu> References: <200101122058.f0CKw7I11863@cwsys.cwsent.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="dc+cDN39EJAMEtIO" Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <200101122058.f0CKw7I11863@cwsys.cwsent.com>; from Cy.Schubert@uumail.gov.bc.ca on Fri, Jan 12, 2001 at 12:57:57PM -0800 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --dc+cDN39EJAMEtIO Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Fri, Jan 12, 2001 at 12:57:57PM -0800, Cy Schubert - ITSD Open Systems Group wrote: > This affects our tcpdump. Well..it affects old versions of tcpdump before we patched the vulnerability (which I discovered and which we initially publicized, BTW), and released the advisory describing it. All this post is is a canned exploit for the known, long fixed problem..nothing to worry about unless you don't act on the security advisories which are released. Kris --dc+cDN39EJAMEtIO Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6X8FJWry0BWjoQKURAnfTAKCZFNZsp+g4id/ruNL4iG0+/WJEswCbBgPe nSOV1oAcvGM1RTaCuhOWWbM= =c3Qx -----END PGP SIGNATURE----- --dc+cDN39EJAMEtIO-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message