From owner-freebsd-security Wed Jul 30 20:02:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA26207 for security-outgoing; Wed, 30 Jul 1997 20:02:13 -0700 (PDT) Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA26177 for ; Wed, 30 Jul 1997 20:02:03 -0700 (PDT) Received: (from msmith@localhost) by genesis.atrad.adelaide.edu.au (8.8.5/8.7.3) id MAA25307; Thu, 31 Jul 1997 12:31:46 +0930 (CST) From: Michael Smith Message-Id: <199707310301.MAA25307@genesis.atrad.adelaide.edu.au> Subject: Re: security hole in FreeBSD In-Reply-To: <3.0.2.32.19970730144402.006c5dd4@pop.videotron.ca> from Patrick Gilbert at "Jul 30, 97 02:44:02 pm" To: gilbertp@videotron.com (Patrick Gilbert) Date: Thu, 31 Jul 1997 12:31:46 +0930 (CST) Cc: security@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Patrick Gilbert stands accused of saying: > > After a brief discussion with TheCa on Efnet, he dcc'd me his famous > exploit for a transcript of > his brief moment of fame on this discussion list. Oh, what a d00d. > execl("/usr/bin/sperl5.00403", > "/usr/bin/sperl5.00403", buf, NULL); > } This looks like a Linux exploit; there is no Perl5 in the FreeBSD tree, and if it were installed from the port/package it would be in /usr/local/bin. -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[