[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20051203173339.scxughxz40gogc0w@webmail.fe.up.pt>
Date: Sat Dec 3 19:14:56 2005
From: lms at fe.up.pt (lms@...up.pt)
Subject: QNX 4.25 suided dhcp.client binary
Hello all,
I recently got a QNX 4.25 vmware image and i found that the dhcp.client shipped
with it is suided.
This obviously enables a normal user to control the NIC's configuration and
produce some other attacks (eg: if the system has some services which depend on
'host/ip based' authentication [NFS,NIS,rlogin, etc]).
Some vmware screenshots are available at:
http://lms.ispgaya.pt/goodies/qnx/
I havent got access to other QNX installations so, allthough the person who gave
me the image said the binary wasnt changed, can anybody else confirm this?
Best regards,
+---------------------------------
| Lu?s Miguel Ferreira da Silva
| Unidade de Qualidade e Seguran?a
| Centro de Inform?tica
| Professor Correia Ara?jo
| Faculdade de Engenharia da
| Universidade do Porto
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-keys
Size: 1657 bytes
Desc: PGP Public Key
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20051203/2546d413/attachment.bin
Powered by blists - more mailing lists