[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] /bin/rm file access vulnerability

To: "J.A. Terranson" <measl@xxxxxxx>
Subject: Re: [Full-Disclosure] /bin/rm file access vulnerability
From: bkfsec <bkfsec@xxxxxxxxxxxxxxxx>
Date: Fri, 31 Dec 2004 10:28:17 -0500

J.A. Terranson wrote:

When you feed trolls, they grow :-)

Hey - I'm preplanning for Thanksgiving!

Seriously, we seem to be getting more crap like this. Are people just bored?

I'm bored :-)


    mx1# touch killme
        mx1# chmod 0 killme
        mx1# ls -al killme
        ----------  1 root  wheel  0 Dec 30 20:39 killme
        mx1# rm killme
        mx1# ls -al killme
        ls: killme: No such file or directory
        mx1#

At least here s/he/it could have tried to wrap the old "should anyone be
allowed to do this" trap around someone's ankles.  But the one below is
just beyond lame - it's a troll with a neon sign attached flashing "FEED
ME!"

Agreed - or, at least, wrapped some humor in there other than a simple perl script. Heh.

Something like a headline "UnCHEckED DefaceMENT in UID0 in *ALL* UnIx KernELS!" would have sufficed.

-Barry


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] /bin/rm file access vulnerability
  - From: Lennart Hansen
- Re: [Full-Disclosure] /bin/rm file access vulnerability
  - From: Jörg Eschke
- Re: [Full-Disclosure] /bin/rm file access vulnerability
  - From: bkfsec

Prev by Date: RE: [Full-Disclosure] Multiple Backdoors found in eEye Products (IRISand SecureIIS)
Next by Date: [Full-Disclosure] MDKSA-2004:162 - Updated gpdf packages fix buffer overflow vulnerability
Previous by thread: Re: [Full-Disclosure] /bin/rm file access vulnerability
Next by thread: RE: [Full-Disclosure] YEY AGAIN Automatic remote compromise ofInternetExplorer Service Pack 2 XP SP2
Index(es):
- Date
- Thread