Firewalls: Re: Sun sendmail vulnerability

Firewalls
(October 1993)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Sun sendmail vulnerability
From:	Peter shipley <shipley @ merde . dis . org>
Date:	Mon, 25 Oct 1993 18:12:18 -0700
To:	Bob Dew <rdew @ alw . nih . gov>
Cc:	Firewalls @ greatcircle . com
In-reply-to:	Your message of Fri, 22 Oct 1993 18:03:42 -0400.
Phone:	(510) 849-2230
Snail-address:	2560 Bancroft way #51;Berkeley CA 94704-1700

>I believe the bug is capable of granting daemon (1:1) read/write access
>to remote systems.  In a relative sense, that's no so bad.
>
>What sort of harm could an intruder do, assuming he had daemon UID access?
>  

Well if you have a Sun System a cracker can (to name a few):

	1) gain root with a few shared lib tricks. 
	2) copy/grind you passwd file.
	3) expoite some NIS/RPC holes since s/he can now send packets from
		a local IP address.


		    -Pete

Indexed By Date	Previous:	Re: perry's gripe about CERT From: Brent Chapman <brent @ mycroft . GreatCircle . COM>
Indexed By Date	Next:	Re: A short dialogue From: Tom Fitzgerald <fitz @ wang . com>
Indexed By Thread	Previous:	Re: Sun sendmail vulnerability From: mjr @ TIS . COM
Indexed By Thread	Next:	sendmail and CERT From: reh @ cs . UMD . EDU (Richard Huddleston)