[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Security hole in Confixx backup script

To: Thomas Loch <thomas8142@xxxxxxxxxx>
Subject: Re: [Full-Disclosure] Security hole in Confixx backup script
From: Valdis.Kletnieks@xxxxxx
Date: Tue, 10 Aug 2004 14:02:19 -0400

On Tue, 10 Aug 2004 17:16:43 +0200, Thomas Loch said:
> What would I have to do then? (excuse my lack of knowledge, please)

'man cp' and 'man chmod'.  Given cp and chmod and initial access to the
ability to run commands as a suitable user, a set-UID bash is achievable...

(Note that you end up with a bash set-UID to the userid you do it under - that 
DOES
matter...)

Attachment: pgp00036.pgp
Description: PGP signature

References:
- Re: [Full-Disclosure] Security hole in Confixx backup script
  - From: Dirk Pirschel
- Re: [Full-Disclosure] Security hole in Confixx backup script
  - From: Valdis . Kletnieks
- Re: [Full-Disclosure] Security hole in Confixx backup script
  - From: Thomas Loch

Prev by Date: Re: [Full-Disclosure] New Bagle variant
Next by Date: Re: [Full-Disclosure] Clear text password exposure in Datakey's tokens and smartcards
Previous by thread: Re: [Full-Disclosure] Security hole in Confixx backup script
Next by thread: Re: [Full-Disclosure] Security hole in Confixx backup script
Index(es):
- Date
- Thread