Re: SCO POP remote root exploit

To: BUGTRAQ@xxxxxxxxxxxx
Subject: Re: SCO POP remote root exploit
From: Bela Lubkin <belal@xxxxxxx>
Date: Wed, 15 Jul 1998 16:26:08 -0700
Approved-by: aleph1@DFW.NET
References: <010201bdafd5$49a532e0$04c29ec2@glitch.gis.minsk.by>
Reply-to: Bela Lubkin <belal@xxxxxxx>
Sender: Bugtraq List <BUGTRAQ@xxxxxxxxxxxx>

Vit Andrusevich wrote:

>    Here is my ( ??:)  ) exploit  for SCOPOP server.
> Offset 0 is for version 2.1.4-R3.
> ASM string was little modified for SCO syscall style.
> Tested on SCO Open Server 5.0.4.

Yep, that works.  Thanks.

A replacement popper is in the works here, based on the security fixes
in 3.52.  Apparently SCO's popper has some other changes which must be
merged together, so it's not just a matter of get-configure-make.  But
anyone reading this could get and build a replacement from qualcomm.

>Bela<

References:
- SCO POP remote root exploit
  - From: Vit Andrusevich

Prev by Date: Verity/Search'97 Security Problems
Next by Date: Sun Security Bulletin #00173
Previous by thread: SCO POP remote root exploit
Next by thread: Re: SCO POP remote root exploit
Index(es):
- Date
- Thread