On Mon, 25 Jun 2001, Pavol Luptak wrote: > Linux kernels with openwall patch (with restricted links in /tmp) are > imunne to this type of attack (following symlinks does not work, link > owner does not match with file's owner). I dont know how openwall patch works but symlinks can be put anywhere ( ~/ for example..) to make this exploit work... [this is just a theory. havent tested that ;)] -- Tomek Lipski email: [ [EMAIL PROTECTED] ] gsm: [ +48 606 787 423 ] Eclipse ISP http://www.ecl.pl/ Czestochowa Al. NMP 31 tel. 034 3665011
- smbd remote file creation vulnerability Michal Zalewski
- Re: smbd remote file creation vulnerability maniac
- Re: smbd remote file creation vulnerability Pavol Luptak
- Re: smbd remote file creation vulnerability Tomek Lipski
- Re: smbd remote file creation vulnerability Jarno Huuskonen
- Re: smbd remote file creation vulnerabi... Pavol Luptak
- Re: smbd remote file creation vuln... Simple Nomad
- Re: smbd remote file creation ... Olaf Kirch
- Re: smbd remote file creat... Simple Nomad
- Re: smbd remote file creation vulnerability Wichert Akkerman
- Re: smbd remote file creation vulnerabi... Michal Zalewski
- Re: smbd remote file creation vulnerabi... Phil Stracchino
- Re: smbd remote file creation vulnerabi... Steve Beattie
- Re: smbd remote file creation vulnerability Joachim Blaabjerg