Date: Sat, 16 Nov 1996 18:25:48 -0600 (CST) From: "S(pork)" <spork@super-g.com> To: freebsd-security@FreeBSD.org, freebsd-hackers@FreeBSD.org Subject: Re: New sendmail bug... Message-ID: <Pine.LNX.3.92.961116182152.13281A-100000@super-g.inch.com> In-Reply-To: <Pine.LNX.3.92.961116165903.12931A-100000@super-g.inch.com>
next in thread | previous in thread | raw e-mail | index | archive | help
And even though it looked like it did not work with smrsh installed, it does... Can anyone with a public UNIX box say "sitting duck"? And on the weekend I have to find out about this. If only I were a programmer instead of a lowly SA with few C skills... Charles On Sat, 16 Nov 1996, S(pork) wrote: > It's nasty and easy... If you're on Bugtraq, you saw it. If anyone with > more knowledge on this issue can check it out, please post to the list so > everyone can free themselves of this vulnerability. Root in under 15 > seconds with an account on the machine. If you need the 'sploit, please > mail me here and I'll send it to you. I verified it on FBSD, NetBSD, > Linux so far... > > TIA > > Charles >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.3.92.961116182152.13281A-100000>