[ale] cron/crontab Buffer Overrun Vulnerabilities
David Hamm
dhamm at itserve.com
Mon Dec 30 10:28:18 EST 1996
This was news to me. It might be of interest to you.
from http://ciac.llnl.gov/ciac/bulletins/h-17.shtml
PROBLEM: Problems have been identified in cron(8) and crontab(1)
programs.
PLATFORM: All platforms running FreeBSD 1.0, 1.1, 2.1.0, 2.1.5,
2.1.6,
2.1.6.1 and 2.2.
All platforms running RedHat Linux version 4.0.
All releases of NetBSD up to and including 1.2.
DAMAGE: Local users may gain root privileges.
SOLUTION: Install the proper patches and/or use the workarounds
provided
below.
VULNERABILITY Exploit information involving this vulnerabilities has
been
ASSESSMENT: made publicly available.
More information about the Ale
mailing list