On Fri, May 19, 2000 at 08:26:16AM -0500, Jim Roland wrote:
> Since I never ran this as root, it never created anything on my system.
> The guy did try to send the mail and get me to run it as root again...did
> he honestly think I would read it a 2nd time as root if I wouldn't read his
> message as root the first time?!
Based on the files I have now received and the installations
I have available for testing, it now appears that Pine 4.04 (RedHat 5.2)
and Pine 4.05 (reported by Jim) are definitely vulnerable. It also
appears that Pine 4.10 (RedHat 6.1) and later are NOT vulnerable.
However, there exists at least one exploit, dating from November of
last year, which is a known hole in Pine prior to 4.21. That one
is documented up in the BugTraq archives. This is NOT that problem,
this is an older meta-character attack.
Time to get them version of Pine up to date folks...
ITMT... I haven't heard back from my FBI contact as yet (or
any of his buddies) about whether they are interested or not. I've
contacted the domain registrar for the download domain and I've send
message into the POC's for that domain as well. If we can shut him
down, fine. If law enforcement is interested enough (like maybe that
source domain was compromised) they'll get back with us.
> -=>Jim Roland
>
> "Never settle with words what you can settle with a flamethrower."
> --Anonymous
[...]
Mike
--
Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
(The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-
To unsubscribe from this list: send the line "unsubscribe linux-newbie" in
the body of a message to [EMAIL PROTECTED]
Please read the FAQ at http://www.linux-learn.org/faqs
