Bugtraq mailing list archives

Re: /cgi-bin/handler - more notes

From: ariel () FIREBALL TAU AC IL (Ariel Biener)
Date: Fri, 20 Jun 1997 22:58:32 +0300


On Fri, 20 Jun 1997, Ariel Biener wrote:

On Thu, 19 Jun 1997, Razvan Dragomirescu wrote:

[.snip.]

So far, IRIX versions 5.3, 6.2, and now 6.3 are vulnerable.
Anyone on IRIX 6.4? :) (What does it run on BTW?)


I have a 6.4 (it runs on Origin, and a version of 6.4 is supposed to come
out for other SGI machines), and the handle cgi-bin looks similar to what
you described. IRIX 6.4 is also vulnerable to this exploit.


--Ariel


Be good.
Razvan
-------------------------------------------------------------------------------
RazvanDragomirescu Organization: KappaNet E-Mail: drazvan () kappa ro,
drazvan () romania ro Alternate E-mail: drazvan () iname com, drazvan () guv ro,
drazvan () pub ro, drazvan () lbi ro Phone: +40-1-6866621 NIC-HANDLE: RD1604
RIPE-HANDLE: RD38-RIPE
NO CARRIER

"Smile, tomorrow will be worse" (Murphy)
-------------------------------------------------------------------------------


   +---------------------------------------------------------+
   | Ariel Biener                                            |
   | e-mail: ariel () post tau ac il        Work ph: 03-6406086 |
   +---------------------------------------------------------+

Current thread:

Re: /cgi-bin/handler - more notes der Mouse (Jun 20)
- <Possible follow-ups>
- Re: /cgi-bin/handler - more notes Ariel Biener (Jun 20)