About this list Date view Thread view Subject view Author view Attachment view

From: Kern Wolfgang (vserver_at_wwip.de)
Date: Mon 09 Feb 2004 - 12:15:52 GMT

Hi vServer Team,

i have downloaded and compiled this expl. too and with 1.26 (Kernel 2.4.24)
the expl. seems still to work :(

i have try this both ways:

chmod 000 /vservers
chattr +t /vservers

and with

chmod +t /vservers

but this expl. Is still working, the only different between chattr and chmod
is one little line of error like this:

root_at_VM1:~# ./chroot_exp
cd ..: Permission denied
Exploit seems to work. =)

But for now i can see full host strukture... the very bad thing is, i can
modify and delete any file from the host, seems like full root rights. The
mystic way, i have to "exit" two times for a normaly host view, like this:

root_at_VM1:/# exit
root_at_VM1:~# exit

At first "exit" the system is in the last folder from i started the expl.
With the second "exit" the system is right now in host system. With SSH on
the expl. V-child i have no access to host system if i try this over ssh on
a v-child it works like vserver NAME enter. One thing i don't understand for
right now... after execute the exploit the right are set to:

Owner: root
Group: root

If i set all back with chattr and chmod the rights set to:

Owner: root
Group: sys

I hope, i have not repeated this problem the 1000000x...

Development Department Germany
     W)ireless W)inds GbR.
Hosting | CoLocation | IP-Transit
Design | Develop. | Production
| Web: http://www.Wireless-Winds.de
| Web: http://www.WWip.de
| Web: http://www.WWip.ch
| eMail: vserver_at_WWip.de
This mail contains information which is confidential and may also be
privileged. It is for exclusive use of the intended recipient(s). If you are
not the intended recipient(s), please note that any distribution, copying
or use of this mail or the information in it is strictly prohibited. If you
have received this mail in error, please notify us immediately and then
destroy this mail and any copies of it. Thank you!
Diese Nachricht enthält vertrauliche Informationen. Diese sind ausdrücklich
nur für den/die Empfänger dieser Nachricht bestimmt. Sollten Sie nicht der
beabsichtigte Empfänger sein so nehmen Sie bitte zur Kenntnis, dass jede
Weiterleitung, jede Kopie oder die Verwendung der in dieser Nachricht
enthaltenen Informationen untersagt ist. Sollten Sie diese Nachricht
fälschlicherweise erhalten haben, so benachrichtigen Sie uns bitte umgehend
und löschen Sie diese Nachricht und sämtliche Kopien bzw. Ausdrucke. Vielen

Vserver mailing list

About this list Date view Thread view Subject view Author view Attachment view
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Mon 09 Feb 2004 - 12:17:22 GMT by hypermail 2.1.3