<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: ppl bugs

Re: ppl bugs

From: Stefan Zehl <sec_at_wg.camelot.de>
Date: Mon, 4 Nov 1996 20:44:09 GMT

In article <199611040954.EAA08420_at_netspace.org>, Walter Misar wrote:
> This two questions came to mind after reading about the ppl holes:
>
> Why is it necessary that /usr/spool/ppl is world writable ?
>
> Why does ppl dump core on buffer overflow ? Does it perhaps change it's real
> uid to 0 ?
Thats at least written on the Hp-Bug Web-Page
: ... the setuid root ppl conveniently turns your real uid to 0 before
: doing the string manipulation, and ...

CU,
Sec

--
 Jeder Tag an dem du nicht lächelst, ist ein verlorener Tag. (C. Chaplin)
          Hiroshima '45    Tsjernobyl '86   Windows '95
          Black holes are where GOD is dividing by zero

Received on Nov 04 1996

This message: [ Message body ]
Next message: SGI Security Coordinator: "SGI Security Advisory 19961101 - Vulnerabilities in systour and"
Previous message: Walter Misar: "ppl bugs"
Maybe in reply to: Walter Misar: "ppl bugs"
Next in thread: SGI Security Coordinator: "SGI Security Advisory 19961101 - Vulnerabilities in systour and"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos