> -----Original Message-----
> From: Bill Fumerola [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, June 30, 1999 11:54 AM
> To: David O'Brien
> Cc: Bill Fumerola; [EMAIL PROTECTED]
> Subject: Re: tcpdump(1) additions.
>
> On Wed, 30 Jun 1999, David O'Brien wrote:
>
>
> Hmmm.. but a non-superuser never sees any of those malicious packets,
> and
> the program is not installed suid, so how would that happen?
[ML] Simple. One of these bad packets makes the currently
executing copy of tcpdump (invoked by superuser) install a backdoor on
the system. Probably with root privileges, too.
An actual exploit thereof is probably not that simple, but
possible nevertheless.
/Marino
> - bill fumerola - [EMAIL PROTECTED] - BF1560 - computer horizons
> corp -
> - ph:(800) 252-2421 - [EMAIL PROTECTED] -
> [EMAIL PROTECTED] -
>
>
>
>
>
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-hackers" in the body of the message
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
