OBSOLETE Patch-ID# 101074-01
Keywords: CTE4995, security, trojan, horse, period, dot, su, 5bin/su, sets, path, "."
Synopsis: OBSOLETED by 100630
Date: Jun/28/93
 
SunOS release: 4.1.2 4.1.3
 
Unbundled Product: 
 
Unbundled Release: 
 
Topic: SECURITY ISSUE: /usr/5bin/su sets a path that begins with ".".
 
BugId's fixed with this patch: 1121935

Changes incorporated in this version: 

Architectures for which this patch is available: all sun4

Patches which may conflict with this patch: 

Obsoleted by: 100630

Files included with this patch: /usr/5bin/su

Problem Description: 
1121935	/usr/5bin/su assigns a path of .:/bin:/usr/bin:/usr/ucb:/etc:/usr/etc
	which starts with ".". System is then vulnerable to trojan horse 
	programs.

INSTALL: 
	Login as root

	mv /5bin/su /5bin/su.FCS

	cp {4.1.2;4.1.3}/su /5bin/su
	chown root.staff /usr/5bin/su
	chmod 4755 /usr/5bin/staff