Home page logo

bugtraq logo Bugtraq mailing list archives

yet another sym link followers
From: potozky () hushmail com
Date: Mon, 4 Jun 2001 15:32:21 +0000 (GMT+01:00)

this time with HPUX 11.0 kmmodreg.
kmmodreg creates two files in /tmp:
/tmp/.kmmodreg_lock and /tmp/kmpath.tmp which cheerfully follows symlink
to /dev/vg ,  /.rhosts and co.
kmmodreg creates the files with O_CREATE 666, or using the umask.
since kmmodreg is running at boot, when umsak is 000, it is possible
to create the linked files with 666.
HP has been notified on the 4th of May, and amazingly enough
released a patch: PHCO_24112.

Graf Potozky

The Other Israel - bi-monthly peace movement magazine
pob 2542, Holon 58125, Israel; ph/fx: +972-3-5565804; 
for free sample hardcopy or email briefings mailto: otherisr () actcom co il 

Free, encrypted, secure Web-based email at www.hushmail.com

  By Date           By Thread  

Current thread:
  • yet another sym link followers potozky (Jun 04)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]