Home page logo

bugtraq logo Bugtraq mailing list archives

Re: smbd remote file creation vulnerability
From: Michal Zalewski <lcamtuf () bos bindview com>
Date: Wed, 27 Jun 2001 20:11:16 -0400 (EDT)

On Tue, 26 Jun 2001, Joachim Blaabjerg wrote:

No, not directly, but if your `su` uses PAM to authenticate users and
PAM reacts to the spaces in the beginning of the passwd file, it
surely has something to do with PAM. To check whether `su` uses PAM or
not, try "ldd `which su`|grep libpam"

/etc/passwd is not the only place you might want to modify. Think of
rc.local or anything like that.

Michal Zalewski [lcamtuf () bos bindview com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]