Comments on: NUKIDO: Various Local Vulnerabilities in Mac OS X 10.3.x http://negative.blogsome.com/2005/01/19/nukido/ Mstrbtn tchnqs shld b ncrgd nd tght n the pblc schl systms! Tue, 08 Dec 2009 21:26:32 +0000 http://wordpress.org/?v=1.5.1-alpha by: anonymous http://negative.blogsome.com/2005/01/19/nukido/#comment-5 Thu, 27 Jan 2005 09:12:58 +0000 http://negative.blogsome.com/2005/01/19/nukido/#comment-5 AgD, if you read carefully on <a href="http://www.immunitysec.com/downloads/nukido.pdf">NUKIDO</a> advisory, the exploitation of <em>at</em> will give you the content of <em>master.passwd</em> file. But, did you understand^Wread <em>master.passwd</em> header file? Hope you get the idea. AgD, if you read carefully on NUKIDO advisory, the exploitation of at will give you the content of master.passwd file. But, did you understand^Wread master.passwd header file? Hope you get the idea.

]]> by: AgD http://negative.blogsome.com/2005/01/19/nukido/#comment-4 Thu, 27 Jan 2005 08:34:05 +0000 http://negative.blogsome.com/2005/01/19/nukido/#comment-4 /etc/master.passwd Last login: Thu Jan 27 15:32:30 on ttyp2 Welcome to Darwin! G4x:~ agd$ cd /etc G4x:/etc agd$ sudo vi master.passwd Password: ## # User Database # # Note that this file is consulted when the system is running in single-user # mode. At other times this information is handled by lookupd. By default, # lookupd gets information from NetInfo, so this file will not be consulted # unless you have changed lookupd's configuration. ## nobody:*:-2:-2::0:0:Unprivileged User:/var/empty:/usr/bin/false root:*:0:0::0:0:System Administrator:/var/root:/bin/sh daemon:*:1:1::0:0:System Services:/var/root:/usr/bin/false : . cyrus:*:77:6::0:0:Cyrus User:/var/imap:/usr/bin/false mailman:*:78:78::0:0:Mailman user:/var/empty:/usr/bin/false appserver:*:79:79::0:0:Application Server:/var/empty:/usr/bin/false "master.passwd" 23L, 1259C whats wrong?! /etc/master.passwd

Last login: Thu Jan 27 15:32:30 on ttyp2
Welcome to Darwin!
G4x:~ agd$ cd /etc
G4x:/etc agd$ sudo vi master.passwd
Password:

##
# User Database
#
# Note that this file is consulted when the system is running in single-user
# mode. At other times this information is handled by lookupd. By default,
# lookupd gets information from NetInfo, so this file will not be consulted
# unless you have changed lookupd’s configuration.
##
nobody:*:-2:-2::0:0:Unprivileged User:/var/empty:/usr/bin/false
root:*:0:0::0:0:System Administrator:/var/root:/bin/sh
daemon:*:1:1::0:0:System Services:/var/root:/usr/bin/false
:
.
cyrus:*:77:6::0:0:Cyrus User:/var/imap:/usr/bin/false
mailman:*:78:78::0:0:Mailman user:/var/empty:/usr/bin/false
appserver:*:79:79::0:0:Application Server:/var/empty:/usr/bin/false
“master.passwd” 23L, 1259C

whats wrong?!

]]> by: KF http://negative.blogsome.com/2005/01/19/nukido/#comment-3 Thu, 27 Jan 2005 03:37:18 +0000 http://negative.blogsome.com/2005/01/19/nukido/#comment-3 as a bug reporter what was your experience with apple... I am looking for something to compare mine to. kf_lists[at]digitalmunition[dot]com -KF as a bug reporter what was your experience with apple… I am looking for something to compare mine to. kf_lists[at]digitalmunition[dot]com
-KF

]]> by: amen http://negative.blogsome.com/2005/01/19/nukido/#comment-2 Sat, 22 Jan 2005 18:40:03 +0000 http://negative.blogsome.com/2005/01/19/nukido/#comment-2 macsux!!! btw sepi amat dari komen, gak ada yg ngebahas roy suryo sih. coba kalo ada... kan bisa ber-hi-roy-ria macsux!!!
btw sepi amat dari komen, gak ada yg ngebahas roy suryo sih. coba kalo ada… kan bisa ber-hi-roy-ria

]]>