Re: Exploit - what to do

To: "Jerzy Wolinski" <wolinski@poczta.onet.pl>
Cc: <debian-security@lists.debian.org>
Subject: Re: Exploit - what to do
From: Tollef Fog Heen <tollef@add.no>
Date: 18 Jul 2001 16:19:40 +0200
Message-id: <[🔎] 87g0butj43.fsf@arabella.intern.opera.no>
In-reply-to: <[🔎] 001d01c10f8f$7cb8a460$4f00a8c0@kompas.net.pl>
References: <[🔎] 001d01c10f8f$7cb8a460$4f00a8c0@kompas.net.pl>

* "Jerzy Wolinski" 

| I found some local root exploit (source and binary).
| I have run it on some test system. It works on Debian 2.2r2
| >From source I can see that it uses passwd program,
| but I have no knowlegde and no time to search how it
| really works. On debian security alert pages I see
| nothing about passwd.
| What should I do?

Send it to security@debian.org.  That is a closed list which won't
make it public preliminary.

-- 

Tollef Fog Heen
You Can't Win

Reply to:

References:
- Exploit - what to do
  - From: "Jerzy Wolinski" <wolinski@poczta.onet.pl>

Prev by Date: Re: Exploit - what to do
Next by Date: Re: Exploit - what to do
Previous by thread: Re: Exploit - what to do
Next by thread: Re: Exploit - what to do
Index(es):
- Date
- Thread