Bugtraq mailing list archives
Re: another /usr/dt/bin/dtappgather feature!
From: spd () GTC1 CPS UNIZAR ES (J.A. Gutierrez)
Date: Fri, 6 Nov 1998 18:35:36 +0100
This isn't a permissions problem on the directories, note that his output shows that the directory does have the new (ie. patched) permissions. I tested this on a completely patched system (patched it right before I tested it with the latest ones from sunsolve1). I was still able to replicate the exploit.
The problem with DTUSERSESSION was already posted on last Feb 24; and by then, the "Solaris dtappgather patch" fixed the DTUSERSESSION but not the link (directory permissions) problem, which probably is fixed by the other patch on 2.5.x. So, at least Solaris 2.6 (sparc) with recent patches is not vulnerable. -- finger spd () gtc1 cps unizar es for PGP / So be easy and free .mailcap tip of the day: / when you're drinking with me application/ms-tnef; cat '%s' > /dev/null / I'm a man you don't meet every day text/x-vcard; cat '%s' > /dev/null / (the pogues)
Current thread:
- another /usr/dt/bin/dtappgather feature! Andrea Costantino (Nov 02)
- Re: another /usr/dt/bin/dtappgather feature! Casper Dik (Nov 04)
- Possible mail spool problem signal (Nov 04)
- Re: Possible mail spool problem CyberPsychotic (Nov 05)
- Re: Possible mail spool problem Conrad Juleff (Nov 05)
- various *lame* DoS attacks Conrad Juleff (Nov 05)
- Re: various *lame* DoS attacks puppet (Nov 07)
- Sendmail DoS (was: Re: various *lame* DoS attacks) net.ikon (Nov 12)
- Possible mail spool problem signal (Nov 04)
- Re: another /usr/dt/bin/dtappgather feature! Casper Dik (Nov 04)
- Re: another /usr/dt/bin/dtappgather feature! Ben Collins (Nov 04)
- Re: another /usr/dt/bin/dtappgather feature! Scott Cromar (Nov 05)
- Re: another /usr/dt/bin/dtappgather feature! J.A. Gutierrez (Nov 06)
- Re: another /usr/dt/bin/dtappgather feature! Casper Dik (Nov 09)
- Sun Security Bulletin #00178 joshua grubman (Nov 09)
- XFree86 3.3.2's setup tool /tmp race Adrian Voinea (Nov 08)
- Secure-linux patch Ernst Jan Plugge (Nov 05)
- Re: quakeworld/win32 DoS Alexander Sanda (Nov 05)
- Re: another /usr/dt/bin/dtappgather feature! Paolo Amendola (Nov 06)