|
Vulnerability Development
mailing list archives
Re: Mail bug
From: "Thor" <thor () tech-center com>
Date: Mon, 4 Jun 2001 11:03:55 +0200
Hi
Hi,
I've discovered slightly odd behavour from /usr/bin/Mail on my Redhat 6.2
box. I don't really have the time to fiddle with this, so I'm hoping you
guys can provide feedback as to if this is reproducable on other systems.
[...]
echo -e \\x00 >/var/spool/mail/gossi
mail
(substituing gossi for your userid, obviously). If it works, it should
die.
[...]
[gossi () owned gossi]$ mail
Segmentation fault (core dumped)
---------
So, roughly, the questions I can see are;
a) can you reproduce it
b) what OS/distro
c) is Mail suid root?
d) why is it doing this, and is it exploitable?
Debian potato
mail is not suid
Mail version 8.1 6/6/93.
no core dumped
---
;---+---;
bye |
bye |hor
Regards,
Gossi The Dog.
 By Date 
By Thread
Current thread:
- Re: Mail bug, (continued)
| 
Intro
