<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: XDM bug

Re: XDM bug

From: jamie <batsy_at_interlog.com>
Date: Fri, 3 Jan 1997 14:55:21 -0500

:On Thu, 2 Jan 1997, Angel Ortiz wrote:
:[...]
:> System: UNIX Ware systems with X
:>
:> Symptom:
:> /usr/X/bin/xdm is setuid
:[...]
:> Any way, please verify xdm setuid on your systems and please let the
:> bugtraq news group know if it exists on other systems.

BSDi 2.1 is also not vulnerable. Even if it was suid, this problem can
be (briefly) alleviated by popping it in you respectice /etc/rc.* file as
opposed to starting it as a user.

-j

"The beatings will continue until morale improves."
Jamie Reid, Jr Sys-admin, batsy_at_interlog.com x232
Received on Jan 03 1997

This message: [ Message body ]
Next message: Mr. ManX: "Re: XDM bug"
Previous message: Steve \: "Re: XDM bug"
In reply to: Steve \: "Re: XDM bug"
Next in thread: Alex Belits: "Re: XDM bug"
Reply: Alex Belits: "Re: XDM bug"
Reply: Aleph One: "serious security bug in wu-ftpd v2.4"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]