[kismac] Re: IMPORTANT SECURITY ADVISORY

  • From: Michael Rossberg <mick@xxxxxxxxxxxxxxxx>
  • To: Brad Knowles <brad.knowles@xxxxxxxxx>, kismac@xxxxxxxxxxxxx
  • Date: Sat, 23 Aug 2003 15:44:36 +0200

> At 10:30 PM +0200 2003/08/22, Michael Rossberg wrote:
>
>>  bad news. enabling SUID feature in kismac 0.05d to 0.05d3 will open a
>>  local root hole on your system. this basically means that everyone 
>> with
>>  enough knowledge can upgrade his account to a root account on your
>>  system.
>>  there are two things you can do about this.
>>  1. disable the SUID feature (default)
>>  2. install kismac 0.05d4
>
>       What about those of us who have installed 0.05d3 but have not enabled 
> the suid feature?
        
        no problems. the problem addresses only the suid feature.

>       Is there anything else that has changed with 0.05d4?

        nothing but one or two minor things. you do not need to update....

mick


Other related posts: