SECURITY BUG IN INTERACTIVE UNIX SYSV386
Conor P. Cahill
cpcahil at virtech.uucp
Tue Feb 19 01:06:24 AEST 1991
davidsen at sixhub.UUCP (Wm E. Davidsen Jr) writes:
> How is the uuencoded binary less dangerous than the source? Once you
>can write the passwd and shadow files you can either make your login
>root, change the root passwd, create a new root userid, etc.
THE uunencoded binary is not less dangerous. I meant "a uuencoded binary
that proves that root access was obtained without damaging the security
of the system".
--
Conor P. Cahill (703)430-9247 Virtual Technologies, Inc.
uunet!virtech!cpcahil 46030 Manekin Plaza, Suite 160
Sterling, VA 22170
More information about the Comp.unix.sysv386
mailing list