2 matches found
BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)
well, i dont know if rcvtty is suppost to be setgid in general, since ive never seen it setgid on anything but BSDi 3.0 and 4.0. but none-the-less, here is a exploit i wrote for it: original ver: http://realhalo.org/xrcvtty.c xrcvtty.cmodified from original: ---------------------------------- /...
BSDI 4.0 tcpmux inetd - Crash
BSDI 4.0 tcpmux inetd - Crash source: https://www.securityfocus.com/bid/66/info A vulnerability exists in inetd which allows a remote user to crash inetd if the tcpmux service is not commented out of /etc/inetd.conf. The tcpmux service is defined in RFC1078 $ nmap -p 1-64000 -i It is also claimed...