Full Disclosure mailing list archives
Re: Eee PC Security
From: Matthew Hall <matt () ecsc co uk>
Date: Tue, 27 Nov 2007 16:58:00 +0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Danny wrote:
Has anyone had a go with/against the Asus Eee PC?
Yes. Open the file browser and get a terminal (/usr/bin/konsole will do). Then just 'sudo su -' and you're root! Every user gets "ALL=(ALL) NOPASSWD: ALL" in sudoers, so not much of a challenge. Haven't tried any remote exploits, but was running a (probably customised) 2.6.16 kernel (iirc) so is vulnerable to a couple of things off the top of my head. Matt -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHTEyXw5xT5S6r89URAi7UAJsE7/ZIw4AiPMtwoyFFp+Pv05rS5wCghT+J Gi7KBFmBiQo4aY4ehF9BcsE= =biMR -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Eee PC Security Danny (Nov 26)
- Re: Eee PC Security Matthew Hall (Nov 27)
- Re: Eee PC Security Michael Holstein (Nov 27)
- Re: Eee PC Security Matthew Hall (Nov 27)