[9691] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [HERT] Advisory #002 Buffer overflow in lsof

daemon@ATHENA.MIT.EDU (Alan Cox)
Sat Feb 20 17:10:58 1999

Date: 	Sat, 20 Feb 1999 01:35:22 +0000
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To:         many@ENSI.NET
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  <99Feb19.015748met.11650@fw.ibs.net.pl> from "Mariusz
              Marcinkiewicz" at Feb 19, 99 02:03:54 am

> In a few mins I noticed all linux versions are chown .kmem; chmod g+s
> lsof...  on linux /dev/kmem is +w for gid kmem, on bsd too (probably, I
> didn't checked that), so... all of std. distributions are vuln. without

crw-r-----   1 root     kmem       1,   2 May  5  1998 /dev/kmem

Red Hat 5.2

crw-r-----   1 root     kmem       1,   2 Jan  1  1980 /dev/kmem

Red Hat 4.2

Alan


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9691] in bugtraq

Re: [HERT] Advisory #002 Buffer overflow in lsof

daemon@ATHENA.MIT.EDU (Alan Cox)Sat Feb 20 17:10:58 1999

daemon@ATHENA.MIT.EDU (Alan Cox)
Sat Feb 20 17:10:58 1999