Bugtraq mailing list archives
SCO UnixWare 7.1.X
From: "Gogel, Derryle" <GOGELD () CITIFINANCIAL COM>
Date: Tue, 12 Feb 2002 16:58:14 -0500
Well.. Looks like a insecure file vuln exsists within the system created file when you do the initial install of SCO. Lets take a look here at /var/adm/isl/ifile root@cccy.br03D124# ls -l /var/adm/isl/ifile -rw-r--r-- 1 root root 4691 Sep 24 1999 /var/adm/isl/ifile And we all know the shadow file is read-only by root Let me know what ya think! OWNER_NAME="Derryle Gogel" USERNAME="Derryle Gogel" OWNER_UID="101" USERNUM="101" OWNER_PW_ENCRYPTED="MM6GHkuVL0Pb6" owner_pw_len="8" ROOT_PW_ENCRYPTED="0N9VekO0riY8w" password_len="6" accept_pla="true" PKGINSTALL="NEWINSTALL" ROOTFS="vxfs"
Current thread:
- SCO UnixWare 7.1.X Gogel, Derryle (Feb 12)