Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

SCO UnixWare 7.1.X

From: "Gogel, Derryle" <GOGELD () CITIFINANCIAL COM>
Date: Tue, 12 Feb 2002 16:58:14 -0500
Well.. Looks like a insecure file vuln exsists within the system created
file when you do the initial install of SCO.


Lets take a look here at /var/adm/isl/ifile 
root@cccy.br03D124# ls -l /var/adm/isl/ifile
-rw-r--r--    1 root     root           4691 Sep 24  1999 /var/adm/isl/ifile
And we all know the shadow file is read-only by root

Let me know what ya think!

OWNER_NAME="Derryle Gogel"
USERNAME="Derryle Gogel"
OWNER_UID="101"
USERNUM="101"
OWNER_PW_ENCRYPTED="MM6GHkuVL0Pb6"
owner_pw_len="8"
ROOT_PW_ENCRYPTED="0N9VekO0riY8w"
password_len="6"
accept_pla="true"
PKGINSTALL="NEWINSTALL"
ROOTFS="vxfs"
Previous By Date Next
Previous By Thread Next

Current thread: