From mboxrd@z Thu Jan  1 00:00:00 1970
From: dfawcus+lists-tuhs@employees.org (Derek Fawcus)
Date: Tue, 19 Dec 2017 20:25:01 +0000
Subject: [TUHS] History of exploits - request for authors
In-Reply-To: <alpine.BSF.2.21.1712191158340.92288@aneurin.horsfall.org>
References: <8460DBBB-A4E2-468B-B294-A2B021213F3C@alchemistowl.org>
 <alpine.BSF.2.21.1712191158340.92288@aneurin.horsfall.org>
Message-ID: <20171219202501.GB95741@accordion.employees.org>

A version independent, but terminal dependent one was using the echo
status line back to input mechanism of some terminals.

When combined with getting the victim to to copy a setuid stub,
one would get permanent access to their account - until root did a fs sweep
looking for unusual setuid programs.

DF