Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Problem with SATAN/VMS

From: sears () eglin af mil (David R. Sears)
Date: Fri, 7 Apr 1995 11:57:47 -0500 (CDT)

The bourne shell script 'rsh.satan' falsely reports a vulnerability on 
hosts that are running DEC VMS 6.1  This is because the OS sends the 
following message to standard output:

        UCX$RSHD - Permission denied - host IP addr

To fix, just add a test for the above string to the 'if $TEST -s 
"$tmp_file"' test in 'rsh.satan'.


+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

David R. Sears                          sears () merlin eglin af mil
96 CCSG/SCTXL                           (904) 882-2678
Eglin AFB, FL 32542                     DSN   872-2678

... Any resemblance between the above views and those of my employer,
my terminal, or the view out my window are purely coincidental.  Any
resemblance between the above and my own views is non-deterministic.
The question of the existence of views in the absence of anyone to hold
them is left as an exercise for the reader.  The question of the
existence of the reader is left as an exercise for the second god
coefficient.  (A discussion of non-orthogonal, non-integral polytheism
is beyond the scope of this article.)

+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Previous By Date Next
Previous By Thread Next

Current thread: