[18421] in bugtraq
Re: gtk+ security hole.
daemon@ATHENA.MIT.EDU (Rob Mosher)
Wed Jan 3 17:59:52 2001
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Message-Id: <3A53966D.6090307@lightning.net>
Date: Wed, 3 Jan 2001 16:15:25 -0500
Reply-To: Rob Mosher <rmosher@LIGHTNING.NET>
From: Rob Mosher <rmosher@LIGHTNING.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
As pointed out by chris, GTK also accepts --gtk-module from the command
line, at around line 238 in gtk-1.2.8, you can make sure euid == uid to
prevent this from happenning. IE:
if ((strcmp ("--gtk-module", (*argv)[i]) == 0 ||
strncmp("--gtk-module=", (*argv)[i], 13) == 0) && geteuid() == getuid())
--
Rob Mosher
Lead Programmer / Systems Engineer
Lightning Internet Services, LLC
