[9677] in bugtraq
Re: [HERT] Advisory #002 Buffer overflow in lsof
daemon@ATHENA.MIT.EDU (Mariusz Marcinkiewicz)
Fri Feb 19 20:25:19 1999
Date: Fri, 19 Feb 1999 02:03:54 +0100
Reply-To: Mariusz Marcinkiewicz <many@ENSI.NET>
From: Mariusz Marcinkiewicz <many@ENSI.NET>
X-To: Don Lewis <Don.Lewis@TSC.TDK.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199902181631.IAA19818@salsa.gv.tsc.tdk.com>
On Thu, 18 Feb 1999, Don Lewis wrote:
> ... or are there systems that give group kmem write privileges? If so,
> I'd say that's a security hole.
Yes, you are right... but... I saw that hole after installing new linx and
checked it's security. First I was suprised but not for a long time.
In a few mins I noticed all linux versions are chown .kmem; chmod g+s
lsof... on linux /dev/kmem is +w for gid kmem, on bsd too (probably, I
didn't checked that), so... all of std. distributions are vuln. without
ONE! the slackware, IMHO, it's the most secure distribution [ :))) i know:
slackware doesn't has lsof;))) but by tahat way that distr. is secure ;P ]
Cheers
--
Mariusz Marcinkiewicz [Security Specialist] [many@ensi.net]
European Network Security Institute [http://www.ensi.net]
