Updated @mikrotik_com advisory to add errata note regarding exploitable scenario of inetutils vulnerability https://hacker.house/releasez/expl0itz/inetutils-telnet.txt … - also LD_LIBRARY_PATH can be manipulated but is cleared during login, unlike the overflows. cc @taviso
-
-
but only if you can run the application with that environment variable set, it's cleared during login to a new telnet session - controlling it in the program does not cross a security boundary - unlike the other specific examples I shared.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.