Re: HP Openview NNM6.1 ovactiond bin exploit

[Milo van der Zee <milo.van.der.zee () ordina nl>]

[snip...]
> have a problem with the =>suid<= bin executable 
[snip...]

Correction: the executable is NOT suid bin but it does 
run as user bin (probably an internal suid system call 
or started from the pmd that runs as bin or ...). So 
when you do a 'ps -ef | grep ovactiond' you will see 
that it is running as bin. Even on Solaris.

MAG,
Milo