Path: utzoo!mnetor!uunet!husc6!uwvax!oddjob!hao!ames!pacbell!att-ih!ihnp4!inuxc!iuvax!pur-ee!uiucdcs!bradley!brad
From: brad@bradley.UUCP
Newsgroups: comp.bugs.sys5
Subject: Re: A security hole
Message-ID: <15000002@bradley>
Date: 10 Mar 88 16:00:00 GMT
References: <120@pcsbst.UUCP>
Lines: 5
Nf-ID: #R:pcsbst.UUCP:120:bradley:15000002:000:244
Nf-From: bradley.UUCP!brad    Mar 10 10:00:00 1988


Also watch out for "IFS=" in the shell with popen and setuid.  On
system V (not BSD), you can set IFS=/; export IFS and if it does a
popen("/xxx/yuyy", "w"); or "r", then all you need is a a program
called xxx in the current working directory.