lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <tencent_2403421C11A09D0168427103@qq.com>
Date: Tue, 18 Jan 2011 17:08:37 +0800
From: "我是王子" <tradeprince@...com>
To: "sbeattie" <sbeattie@...ntu.com>
Cc: full-disclosure <full-disclosure@...ts.grok.org.uk>,
	bugtraq <bugtraq@...urityfocus.com>
Subject: I find a bug

hello, 
  
 I found a bug,
  
 run [sudo strace su] command can get root privileges without any password.
  
  bill
  
  ------------------ Original ------------------
  From:  "Steve Beattie"<sbeattie@...ntu.com>;
 Date:  Thu, Jan 13, 2011 08:01 PM
 To:  "ubuntu-security-announce"<ubuntu-security-announce@...ts.ubuntu.com>; 
 Cc:  "full-disclosure"<full-disclosure@...ts.grok.org.uk>; "bugtraq"<bugtraq@...urityfocus.com>; 
 Subject:  [USN-1042-2] PHP5 regression

  
-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@...ts.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ