Bugtraq: Re: wordperfect 8 for linux security

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: wordperfect 8 for linux security

From: kaos () OCS COM AU (Keith Owens)
Date: Sat, 19 Dec 1998 18:53:09 +1100


On Fri, 18 Dec 1998 11:47:45 -0500,
Edsel Adap <adap () ADAP ORG> wrote:

When wordperfect 8 is installed it creates a /tmp/wpc-<hostname>
directory with permissions 777.  And all files inside of it are mode
666.  And when these files are created, symlinks are followed.


Worse that that.  Even if you delete the wpc-<hostname> file, the next
time you run wpc it creates it again.  So do not run wp8 under any
powerful userid.

By Date By Thread

Current thread:

OSS nice tmp race Stefan Laudat (Dec 16)
- wordperfect 8 for linux security Edsel Adap (Dec 18)
  - new tcp scan method antirez (Dec 17)
  - Re: wordperfect 8 for linux security Dug Song (Dec 18)
  - Re: wordperfect 8 for linux security Keith Owens (Dec 18)
  - Irc: another funny stuff. In some irc clients dcc may be hijacked. awgn () COSMOS IT (Dec 19)
  - ValueClick CGI Vulnerability Philip Stoev (Dec 19)
  - FTP.SODRE.NET Hacked... Eggdrop Modified.. Geoffrey Huntley (Dec 19)
    - Re: FTP.SODRE.NET Hacked... Eggdrop Modified.. Matt Hallacy (Dec 19)
  - ip header id patched. awgn () COSMOS IT (Dec 19)