Bugtraq: Re: Little exploit for startup scripts (SCO 5.0.4p).

[rosmo () sektori com (Taneli Leppä)]

On Mon, 8 Mar 1999 08:43:15 +0100, Peter van Dijk wrote:

> No. rm -f removes just the symlink, not the target file.
Actually the script won't delete any script, instead
it will overwrite any file:

# S84rpcinit:
# ...
#       /bin/su root -c "/bin/ps -ef" > /tmp/rpc$$ 2>/tmp/rpc.err$$
#       /bin/rm -f /tmp/rpc.err$$

Now if /tmp/rpc$$ was symlinked to another file, it would
be overwritten with output from /bin/ps... right? :-)

Regards,
Taneli
--
| Taneli Leppä <rosmo () sektori com>, <http://www.rosmo.sektori.com>
| GSM: +358505485242 - Tärkeimmät uutiset: http://uutiset.icon.fi