On Wed, Jul 26, 2006 at 10:20:05AM +0200, Marc Weber wrote: > I did notice that you can do > su > gvim > :echo SERVERNAME > > and then using another user > gvim --servername=GVIMxx --remote-send='!/dowhatyouwant ;-)' > > Thus: If you know your admin is using vim you can easily try to get one > gvim instance to execute arbitrary commands as super user!!
Performing a simple "su" saves the environment that you su'ed from. If you instead ran "su -", I imagine this would not work. James -- GPG Key: 1024D/61326D40 2003-09-02 James Vega <[EMAIL PROTECTED]>
signature.asc
Description: Digital signature
