Date: Sat, 8 Sep 2001 05:44:58 -0700 From: Kris Kennaway <kris@obsecurity.org> To: Kristen Doyle <colk@tampabay.rr.com> Cc: FreeBSD securit <Freebsd-security@freebsd.org> Subject: Re: Remote Shell Trojan Message-ID: <20010908054458.A68778@xor.obsecurity.org> In-Reply-To: <001c01c1385e$d8e43400$f0f2a118@tampabay.rr.com>; from colk@tampabay.rr.com on Sat, Sep 08, 2001 at 08:07:35AM -0400 References: <001c01c1385e$d8e43400$f0f2a118@tampabay.rr.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--C7zPtVaVf+AK4Oqc Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Sep 08, 2001 at 08:07:35AM -0400, Kristen Doyle wrote: > Can anyone say for certian if FreeBSD is effected either as a base system= or > under linux compat >=20 > the description of the vuln is here > http://www.qualys.com/alert/remoteshell.html You could do something like this under almost any operating system including FreeBSD. It doesn't exploit a security vulnerability per se, it relies on being introduced into the system in another manner. Kris --C7zPtVaVf+AK4Oqc Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7mhLJWry0BWjoQKURAqHiAJ9yt2QLo+QLprS7jeewUf0qUcY0wQCfSuPs lZSTaaiz9swGknWRB6L0HdM= =lqlf -----END PGP SIGNATURE----- --C7zPtVaVf+AK4Oqc-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010908054458.A68778>