On Sunday 10 February 2008, Frank Cox wrote: > https://bugzilla.redhat.com/show_bug.cgi?id=432229 Hmm. I wonder if this is how the recent apache hosted servers were rooted remotely, even though the official explanation was password compromise. While this particular issue is a local exploit, if you can get code to run on the box as some user local to that box then you could get a remote exploit through this local one. Any local exploit can easily become a remote exploit if script injection into rich app servers is possible. Thanks for posting. -- Lamar Owen www.pari.edu -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list