[339] in Coldmud discussion meeting
extremely large security hole in world 6
daemon@ATHENA.MIT.EDU (Tue May 31 01:10:58 1994
)
From: deforest@netcom.com (Robert de Forest)
To: coldstuff@MIT.EDU
Date: Mon, 30 May 1994 22:02:25 -0700 (PDT)
Don't panic, but $connection.parse in world 6 should check to make sure
sender() == 0. Otherwise I can do $admin_1.connections()[1].parse(buffer_
from_strings([";" + this.name_str() + ".chparents([$admin])"])).
Those having modified world 6 extensively probably have nothign to worry
about. :)
--
"Mr. Tater, I think I have a punishment for you that is fair, just, and
clever. Or maybe just fairly clever."
-- King Yakko of Anvilania.