Bug 2577 - rlogin (kcmd.c) root-level, local+remote (passive) security hole
Summary: rlogin (kcmd.c) root-level, local+remote (passive) security hole
Status: Closed FIXED
Alias: None
Product: Base System
Classification: Unclassified
Component: bin (show other bugs)
Version: 3.0-CURRENT
Hardware: Any Any
: Normal Affects Only Me
Assignee: Mark Murray
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 1997-01-25 13:40 UTC by Julian Assange
Modified: 1997-02-09 21:36 UTC (History)
0 users

See Also:

Attachments
file.diff (1.07 KB, patch)
1997-01-25 13:40 UTC, Julian Assange 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Julian Assange 1997-01-25 13:40:01 UTC 
	

	by forging dns information kcmd.c is exploitable

Fix: apply following patch; also fixes an unchecked malloc()
Comment 1 mpp freebsd_committer freebsd_triage 1997-01-26 07:01:51 UTC 
Responsible Changed
From-To: gnats-admin->freebsd-bugs

Misfiled PR.
Comment 2 Mark Murray freebsd_committer freebsd_triage 1997-01-26 07:27:29 UTC 
Responsible Changed
From-To: freebsd-bugs->markm

eBones is my turf.
Comment 3 Mark Murray freebsd_committer freebsd_triage 1997-02-09 21:34:43 UTC 
State Changed
From-To: open->closed

Suggested fix applied. Thanks!