TRu64 exploit

From: Paul Crittenden (crittend@storm.simpson.edu)
Date: Wed Aug 07 2002 - 17:15:23 EDT

• Next message: Jonathan Burelbach: "upgrading java breaks oracle web server?"
• Previous message: Maglinger, Paul: "Using command line to perform tape drive cleaning"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Is anyone aware of this? I received an email from a Computer Science
professor concerning a hack of some sort. Here is the email with the URL
for the hack.

Source code to a nasty hack is out on the web for Tru 54 5.1. This allows
any user to get root. Don't know the fix but thought you should be aware of
this.
Here's the URL: http://deepmagic.securify.org.uk:8080/su.c

Does it exist and if so is there a fix?

Paul Crittenden
Computer System Manager
Simpson College
email: crittend@simpson.edu
Phone: (515)961-1680

"You don't have to attend every argument you're invited to."

• Next message: Jonathan Burelbach: "upgrading java breaks oracle web server?"
• Previous message: Maglinger, Paul: "Using command line to perform tape drive cleaning"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:48:48 EDT