RedHat 6.2 /usr/bin/rcp - 'SUID' Local Privilege Escalation

!/usr/bin/perl -w exploits suid privledges on rcp Not really tested this but hey works on redhat6.2 not werk on freebsd4.1 stable bug discovered by Andrew Griffiths Exploit written by tlabs greetz to those that know me innit Please set your rcpfile this can be found by doing ls -alF which rcp hav...

possible rcp hole...

Here is a possible bug in rcp; since I think it calls system. I haven't had much time to play with this, because exama are coming up. It is negated because system calls /bin/cp which with the newer versions of bash, it drops it's effective credientals... $ ls -alF which rcp -rwsr-xr-x 1 root root...