[23528] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: xmms/xchat full access shared memory segments (and Mozilla)

daemon@ATHENA.MIT.EDU (Ian Freislich)
Mon Dec 17 15:06:17 2001

To: vanegu_j@epita.fr
Cc: bugtraq@securityfocus.com
In-Reply-To: Message from Julien VANEGUE <vanegu_j@epita.fr> 
   of "Sat, 03 Nov 2001 12:22:23 +0200." <0111031122230M.12122@daril> 
Date: Sun, 16 Dec 2001 08:27:49 +0200
From: Ian Freislich <iang@digs.iafrica.com>
Message-Id: <E16FUm5-0002Z2-00@brane.digs.iafrica.com>

Hi

Don't think that Linux has much to do with the permissions of the
IPC, that's pretty much left up to the program.  However, FWIW on
my system (FreeBSD) I checked because I use xmms as well it appears
that Mozilla has the same problem:

[copernicus] ~ $ ipcs -p -m
Shared Memory:
T     ID     KEY        MODE       OWNER    GROUP  CPID  LPID
m 262146      0     --rwarwarwa     ianf    guest  54951    331
m 1769475     0     --rwarwarwa     ianf    guest  91109    331

[copernicus] ~ $ ps -p 54951
  PID  TT  STAT      TIME COMMAND
54951  p8- S    147:52.84 xmms
[copernicus] ~ $ ps -p 91109
  PID  TT  STAT      TIME COMMAND
91109  ??  S     15:20.62 ./mozilla-bin


> On slackware 8 :
> 
> bash-2.05$ ipcs -m
> 
> ------ Shared Memory Segments --------
> key        shmid      owner      perms      bytes      nattch     status     
> 0x00000000 4216960    mayhem    777        196608     2          dest        
> 0x00000000 7636737    mayhem    777        196608     2          dest        
 
> 
> bash-2.05$ ipcs -p -m
> 
> ------ Shared Memory Creator/Last-op --------
> shmid      owner      cpid       lpid      
> 4216960    mayhem     3921       1406      
> 7636737    mayhem     26206      26209     
> 
> bash-2.05$ cat /proc/3921/cmdline ; echo
> /opt/gnome/bin/xmms
> bash-2.05$ cat /proc/26206/cmdline ; echo
> /opt/gnome/bin/xchat
> bash-2.05$ 

--
Ian Freislich

home	help	back	first	fref	pref	prev	next	nref	lref	last	post