Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability

SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability

From: Jordan Pilat <cacophony_at_syncreate.org>
Date: 6 Aug 2004 02:45:45 -0000

('binary' encoding is not supported, stored as-is) A vulnerability exists in the implementation of
placing the SuSE YAST Control Center in the K Menu.
Normally, one would be required to authenticate as
root before being granted access to the YAST Control
Center. When placing the 'preferences' submenu in
the K Menu (in the 'submenu' section under the
'Menus' tab of the K menu panel preferences),
however, one can not only access, but make changes to
the options in the YAST control center without having
to authenticate as root.
Received on Aug 06 2004

This message: [ Message body ]
Next message: Kevin Sheldrake: "Re: [Full-Disclosure] Clear text password exposure in Datakey's tokens and smartcards"
Previous message: Tilman Schmidt: "Re: CVS woes: .cvspass"
Next in thread: Stefan Seifert: "Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability"
Reply: Stefan Seifert: "Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability"
Reply: Radoslav Dejanović: "Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]