Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Undisclosed Sudo Vulnerability ?

from [Kurt Seifried] Network Security [Permanent Link]
Subject: Re: Undisclosed Sudo Vulnerability ?
Date: Sat, 30 Jul 2005 16:35:05 -0600
Nice social engineering; this removes all files and filder in the current directory:

[test@devel ~]$ gcc -pipe -o sudoh foo.c
foo.c: In function âth30_iz_own3dâ:
foo.c:67: warning: pointer targets in passing argument 1 of âfillâ differ in signedness
foo.c:68: warning: pointer targets in passing argument 1 of âfillâ differ in signedness
{standard input}: Assembler messages:
{standard input}:3: Warning: ignoring changed section attributes for .text
[test@devel ~]$ ls -la
total 76
drwxr-xr-x 3 test test 4096 Jul 30 16:29 .
drwxr-xr-x 5 root root 4096 Jul 30 16:26 ..
-rw-r--r-- 1 test test 24 Jul 30 16:26 .bash_logout
-rw-r--r-- 1 test test 191 Jul 30 16:26 .bash_profile
-rw-r--r-- 1 test test 124 Jul 30 16:26 .bashrc
-rw-r--r-- 1 test test 438 Jul 30 16:26 .emacs
drwxrwxr-x 3 test test 4096 Jul 30 16:26 .emacs.d
-rw-rw-r-- 1 test test 2540 Jul 30 16:26 foo.c
-rwxrwxr-x 1 test test 5817 Jul 30 16:29 sudoh
[test@devel ~]$ ./sudoh
[test@devel ~]$ ls -la
total 16
drwxr-xr-x 2 test test 4096 Jul 30 16:29 .
drwxr-xr-x 5 root root 4096 Jul 30 16:26 ..

[test@devel ~]$


-Kurt


[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] The Java applet sandbox and stateful firewalls, Florian Weimer
Next by Date:  Re: Undisclosed Sudo Vulnerability ?, babarr
Previous by Thread:  Undisclosed Sudo Vulnerability ?, Esler, Joel - Contractor
Next by Thread:  Re: [Full-disclosure] Undisclosed Sudo Vulnerability ?, Jim Clausing
Indexes:  [Date] [Thread] [Top] [All Lists]