Bugtraq mailing list archives
Re: majordomo local exploit
From: chip () VALINUX COM (Chip Salzenberg)
Date: Wed, 29 Dec 1999 23:39:14 -0800
According to Henrik Edlund:
There is no need, I believe, to use the sysopen function as someone else suggested earlier.
But sysopen() is a simpler approach that eliminates all such concerns,
and adds robustness. Simply prepending "< " is not enough to work in
the presence of, say, filenames that begin with whitespace.
PS: I added sysopen() to Perl 5.4. :-)
--
Chip Salzenberg - a.k.a. - <chip () valinux com>
"Fleagal. Bingo. Drooper. Snork. They're cops." //MST3K
Current thread:
- Re: majordomo local exploit Henrik Edlund (Dec 29)
- Re: majordomo local exploit Jefferson Ogata (Dec 29)
- AltaVista followup and monitor script Edward Glowacki (Dec 29)
- Re: majordomo local exploit Chip Salzenberg (Dec 29)
- UnixWare rtpm exploit + discussion Brock Tellier (Dec 30)
- Local / Remote GET Buffer Overflow Vulnerability in CamShot WebCam HTTP Server v2.5 for Win9x/NT Ussr Labs (Dec 30)
- PC-Cillin 6.x DoS Attack Daniel P. Stasinski (Dec 30)
- Analysis of "stacheldraht" Dave Dittrich (Dec 30)
- Re: Analysis of "stacheldraht" Jordan Ritter (Dec 31)
- Re: Analysis of "stacheldraht" Dave Dittrich (Dec 31)
- Re: Analysis of "stacheldraht" Jordan Ritter (Dec 31)