Posted to Bugtraq on August 15 2000 by Oystein Viggen of Trustix <firstname.lastname@example.org>.
Trustix Trustix Secure Linux 1.1
The RPM for Apache-SSL distributed with Trustix Secure Linux was misconfigured such that the httpsd binary installed world-writable by default. As the daemon runs as root, this could easily lead to privelege escalation for local users.
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: email@example.com.