Bugtraq mailing list archives
Large security hole in SGI IRIX 5.2
From: glaze () rclsgi eng ohio-state edu (Larry Glaze)
Date: Thu, 2 Mar 1995 14:03:03 -0500 (EST)
We have discovered a large hole in SGI IRIX 5.2. It deals with the desktop tool /usr/lib/desktop/permissions. Use of this tool in a certain way will allow any user to modify any file on the system. I have fixed the hole temporarily on our system by removing the suid root and sgid sys bits on the /usr/lib/desktop/permissions file. I would advise anyone running IRIX 5.2 to do the same or to completely disallow non-root users execute priveldge of the tool. This problem does not exist in IRIX 5.3 or any versions previous to 5.0. I do not have any 5.0.* or 5.1.* systems so I can't verify if the problem exists there as well. CERT and SGI have both been notified of the problem. SGI is looking into it (who knows if they will do anything about it). I want to give admins some time to change the priveldges on the permissions tool so I am waiting until Monday morning (when I get to work) to post the exploit of this hole. Thanks, Larry -- Larry Glaze | "...Life's a bummer..." The Ohio State University | --Smashing Pumpkins glaze.6 () osu edu | http://rclsgi.eng.ohio-state.edu/~glaze |All opinions are my own, blah, blah...
Current thread:
- Re: Re[2]: snooper watchers fast forward futurama (Mar 01)
- Re: Re[2]: snooper watchers System Administrator (Mar 02)
- Large security hole in SGI IRIX 5.2 Larry Glaze (Mar 02)
- Re: Large security hole in SGI IRIX 5.2 Christian A. Ratliff (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Larry Glaze (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Dave Schweisguth (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Dave Schweisguth (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Software Test Account (Mar 07)
- Re: Large security hole in SGI IRIX 5.2 Steve Robbins (Mar 10)
- Re: Large security hole in SGI IRIX 5.2 Christian A. Ratliff (Mar 03)
- <Possible follow-ups>
- Re: Re[2]: snooper watchers F. L. Charles Seeger III (Mar 01)
- Re: snooper watchers der Mouse (Mar 01)
- Re: Re[2]: snooper watchers der Mouse (Mar 01)
- Re: Re[2]: snooper watchers whatever happened to my fighting fighting lightning lioness? (Mar 01)