Bugtraq mailing list archives

buffer over in hp-ux 10.20 kernel

From: C0WZ1LL4 () NETSPACE ORG (C0WZ1LL4 () NETSPACE ORG)
Date: Sat, 22 Mar 1997 02:30:49 -0500


Hello fellow mongoloids
Try this:
Make hard link of /etc/passwd to /var/tmp/dead.letter
Telnet to port 25, send mail from some bad email address to some unreacheable hoost.
Watch your message get appended to passwd.
ie:
cowzilla::0:0:c0wz1ll4 0wns u:/:/bin/sh

This is not good.  Worked with my 8.8.4, will probably also work with 8.8.5
Root for the whole family

-Cowzilla the omnipotent b0v1n3
PD
Greets to various #2600 people

Current thread:

buffer over in hp-ux 10.20 kernel C0WZ1LL4 () NETSPACE ORG (Mar 21)
- Re: New Sendmail bug Jeffrey Moyer (Mar 24)
  - Re: New Sendmail bug Gonzo Granzeau (Mar 24)
    - Re: New Sendmail bug Claude Scarpelli (Mar 25)
    - Latest IE FIX from MS is a HOAX Aaron Spangler (Mar 25)
    - Re: Latest IE FIX from MS is a HOAX Michael H. Warfield (Mar 25)
    - ANNOUNCE : NTCrack v1.0 Jonathan Wilkins (Mar 27)
    - There are more loopholes in LPD Patrick Powell (Mar 28)
    - symlink bug in tin/rtin NetRunner (Mar 29)
    - Re: symlink bug in tin/rtin Nelson Murilo (Mar 29)
    - ANNOUNCE : NTCrack v2.0 Jonathan Wilkins (Mar 29)

(Thread continues...)