[ale] cron/crontab Buffer Overrun Vulnerabilities

David Hamm dhamm at itserve.com
Mon Dec 30 10:28:18 EST 1996


This was news to me.  It might be of interest to you.

from http://ciac.llnl.gov/ciac/bulletins/h-17.shtml


PROBLEM:       Problems have been identified in cron(8) and crontab(1) 
               programs. 
PLATFORM:      All platforms running FreeBSD 1.0, 1.1, 2.1.0, 2.1.5,
2.1.6, 
               2.1.6.1 and 2.2. 
               All platforms running RedHat Linux version 4.0. 
               All releases of NetBSD up to and including 1.2. 
DAMAGE:        Local users may gain root privileges. 
SOLUTION:      Install the proper patches and/or use the workarounds
provided 
               below. 

VULNERABILITY  Exploit information involving this vulnerabilities has
been 
ASSESSMENT:    made publicly available.






More information about the Ale mailing list