[3223] in bugtraq
Re: libresolv+ bug
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Aug 20 17:39:26 1996
Date: Tue, 20 Aug 1996 09:25:07 +0100
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: Alan Cox <coxa@cableol.net>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199608192334.TAA04294@Collatz.McRCIM.McGill.EDU> from "der
Mouse" at Aug 19, 96 07:34:55 pm
> Well, if the text segment is read-only, that makes it rather difficult
> to patch the binary. But if the binary has privilege to go setuid,
No no no, this is a perpetual fiction item I keep meeting. If its
not being setuid at the time you can use ptrace() to patch it. You can
use mprotect to change the protection of the C library image (its COW
so it doesnt hurt others). Your code space is not some mythical sanctuary.
Alan
