<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Full Disclosure: Re: screen 4.0.3 local Authentication Bypass

Re: screen 4.0.3 local Authentication Bypass

From: Alexander Klink <a.klink_at_cynops.de>
Date: Mon, 4 Jun 2007 10:14:58 +0200

Hi,

On Mon, Jun 04, 2007 at 05:36:31AM +0200, rembrandt_at_jpberlin.de wrote:
> It has been tested on OpenBSD 4.1 + screen 4.0.3 on x86.
>
> How to reproduce:
>
> Lock screen using ctrl+x
I guess you mean Ctrl+a+x?

> Choose a Password
> Confirm the Password
>
> Screen asks for a Password to unlock the screen.
> Just press ctrl+c and it displays "Getpass error".
> 2 seconds later the screen is unlocked and you`ve access.
I can't reproduce this on either Mac OS X (screen 4.00.03) or
Debian (screen 4.00.02) ...

Regards,
Alex

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Jun 04 2007

This message: [ Message body ]
Next message: Aditya K Sood: "Project CERA : Cutting Edge Research Arena"
Previous message: Aditya K Sood: "Adverse Vectors of Coding in Wordpress : Post Modifications"
In reply to: rembrandt_at_jpberlin.de: "screen 4.0.3 local Authentication Bypass"
Next in thread: Christian \: "Re: screen 4.0.3 local Authentication Bypass"
Reply: Christian \: "Re: screen 4.0.3 local Authentication Bypass"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]