I just compiled and successfully executed the exploit on my Debian Etch i686 laptop. I attempted it on unixclan.no-ip.org's free shell - it runs Debian Etch on a PA-RISC? machine. The exploit would not compile there, nor would it execute. This could be a security feature, or it could be that this does not affect RISC machines. Who's willing to test the www.testdrive.hp.com shell servers?
Slashdot Mirror
Debian released a fix for Etch systems before 9AM-EST this morning.
So run to a friend's house, get root with this exploit, and run "aptitude update && aptitude upgrade" for him.
I just compiled and successfully executed the exploit on my Debian Etch i686 laptop. I attempted it on unixclan.no-ip.org's free shell - it runs Debian Etch on a PA-RISC? machine. The exploit would not compile there, nor would it execute. This could be a security feature, or it could be that this does not affect RISC machines.
Who's willing to test the www.testdrive.hp.com shell servers?