The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: Core 'Security Digest' - Archives (1990 - 1991)
DOCUMENT: Core 'Security Digest' V1 #14 1991-03-05 (1 file, 913 bytes)
SOURCE: http://securitydigest.org/exec/display?f=core/archive/114.txt&t=text/plain
NOTICE: securitydigest.org recognises the rights of all third-party works.

START OF DOCUMENT


Date: Tue Mar 5 13:07:33 PST 1991
Subject: Core Security Digest V1 #14

Core Security Digest Volume 1 Issue 14

subject(s):

            BSD mail bug

The unix core security mailing list is by invitation only and contains
sensitive material which SHOULD NOT BE REVEALED to non-members.
DO NOT PUT ANY LIST CONTENTS IN LOCATIONS ACCESSABLE TO NON-MEMBERS.
If you must keep copies on-line, please encrypt them at the very least.

PLEASE POST TO:                              core@uninet.cpd.com
PLEASE SEND EMERGENCY ALERTS TO:   core-emergency@uninet.cpd.com
PLEASE SEND REQUESTS TO:             core-request@uninet.cpd.com


------------------------------------------------------------------------

Date: Tue, 5 Mar 91 13:03:24 PST
From: corp.sun.com!bradpowell@sun.com
Subject: BSD mail bug

[ Sorry about the double digest, but I went through my mail AFTER sending
out the first digest, and thought everyone would be interested in this
sooner rather than later - neil ]

A bug in /bin/mail was recently reported to Sun and a fix generated.
Reference Sun Security Bulletin #00105. This bug had to do with
forcing /bin/mail to dump core and then feeding it a string to force a
root shell.  The reason for reporting it here, is that the Sun version
of /bin/mail (/bin/rmi l) were derived from BSD 4.2 Of Unix(tm). The
'hole' thus is most likely in any operating system derived from the
BSD 4.2 release (or earlier BSD releases). From the origional bug
filed TO Sun, it was shown that other operating systems suffered from
the same problem.

[ How about some more explicit directions? - neil ]

------------------------------------------------------------------------

        End of Core Security Digest Volume 1 Issue 14
        **********************

END OF DOCUMENT