> -----Original Message-----
> From: Bill Fumerola [SMTP:bi...@chc-chimes.com]
> Sent: Wednesday, June 30, 1999 11:54 AM
> To: David O'Brien
> Cc: Bill Fumerola; hack...@freebsd.org
> Subject: Re: tcpdump(1) additions.
>
> On Wed, 30 Jun 1999, David O'Brien wrote:
>
>
> Hmmm.. but a non-superuser never sees any of those malicious packets,
> and
> the program is not installed suid, so how would that happen?
[ML] Simple. One of these bad packets makes the currently
executing copy of tcpdump (invoked by superuser) install a backdoor on
the system. Probably with root privileges, too.
An actual exploit thereof is probably not that simple, but
possible nevertheless.
/Marino
> - bill fumerola - bi...@chc-chimes.com - BF1560 - computer horizons
> corp -
> - ph:(800) 252-2421 - bfume...@computerhorizons.com -
> bi...@freebsd.org -
>
>
>
>
>
> To Unsubscribe: send mail to majord...@freebsd.org
> with "unsubscribe freebsd-hackers" in the body of the message
To Unsubscribe: send mail to majord...@freebsd.org
with "unsubscribe freebsd-hackers" in the body of the message
