I found some local root exploit (source and
binary).
I have run it on some test system. It works on Debian 2.2r2 From source I can see that it uses passwd program, but I have no knowlegde and no time to search how it really works. On debian security alert pages I see nothing about passwd. What should I do? |