Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability

To: <debian-security@lists.debian.org>
Subject: Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
From: Björn Metzdorf <bm@turtle-entertainment.de>
Date: Mon, 8 Jan 2001 21:59:27 +0100
Message-id: <[🔎] 069d01c079b5$e37c75c0$81c206d4@office.gnw.de>
References: <[🔎] Pine.LNX.4.31.0101081752230.25739-100000@io.88.net> <[🔎] 47250783707.20010108111349@iwz.com> <[🔎] 20010108153716.A2493@incandescent.mp3revolution.net>

----- Original Message -----
From: Andres Salomon <dilinger@mp3revolution.net>
To: Kevin <cog@iwz.com>
Cc: <debian-security@lists.debian.org>
Sent: Monday, January 08, 2001 9:37 PM
Subject: Re: 'export RESOLV_HOST_CONF= any file you want' local
vulnerability

> try it w/ traceroute.  lotsa fun, and it works
> on mandrake, too.
>
> things like this make me glad i don't have to deal w/ untrusted
> customers that have shell access...

Well, there are plenty of webhosters outside, who grant cgi-bin (perl) or
php access. Executing as the webserveruser should be no different to real
shell-users.

but i could not verify this problem with fping on debian potato..

cya
Bjoern

Reply to:

Follow-Ups:
- Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
  - From: Andres Salomon <dilinger@mp3revolution.net>

References:
- Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
  - From: thomas lakofski <thomas@88.net>
- Re[2]: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
  - From: Kevin <cog@iwz.com>
- Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
  - From: Andres Salomon <dilinger@mp3revolution.net>

Prev by Date: Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
Next by Date: Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
Previous by thread: Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
Next by thread: Re: 'export RESOLV_HOST_CONF= any file you want' local vulnerability
Index(es):
- Date
- Thread