Re: Is there something that can be done against this ???

Ben Collins (bcollins@debian.org)
Mon, 13 Aug 2001 15:32:58 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Eli Carter: "Re: Is there something that can be done against this ???"
Previous message: Mircea Ciocan: "Re: Is there something that can be done against this ???"

On Mon, Aug 13, 2001 at 09:56:37PM +0300, Mircea Ciocan wrote:
> The attached piece of script kiddie shit is the first one that worked
> flawlessly on my Mandrake box :((( ( kernel 2.4.7ac2, glibc-2.2.3 ),
> instant root access !!!.
> I was stunned, and it seem that is the beginning of a Linux Code Red
> lookalike worm :(((( using that exploit, probably this is not the most
> apropriate place to send this, but I'm not subscribed to the glibc
> mailing list and I just hope that some glibc hackers are on linux kernel
> list also and they see that and do something before we join the ranks of
> M$.

Wow, someone tried to pass off this as an exploit? Looks very much like
Debian's fakeroot package, used to give a false root lookalike shell
(helps when building things as normal user, when they need to think they
are root).

Nice, but not an exploit. Just a cheap old trick.

-- 
 .----------=======-=-======-=========-----------=====------------=-=-----.
/  Ben Collins  --  ...on that fantastic voyage...  --  Debian GNU/Linux   \
`  bcollins@debian.org  --  bcollins@openldap.org  --  bcollins@linux.com  '
 `---=========------=======-------------=-=-----=-===-======-------=--=---'
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Eli Carter: "Re: Is there something that can be done against this ???"
Previous message: Mircea Ciocan: "Re: Is there something that can be done against this ???"