[2720] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

system() call in suid programs

daemon@ATHENA.MIT.EDU (Not Joe)
Fri Jun 14 12:33:01 1996

Date: 	Fri, 14 Jun 1996 10:18:35 +22304652
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Not Joe <czetts@rpi.edu>
X-To:         bugtraq@crimelab.com
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>

Hello,

I know that it is bad to use the system() system call in programs, especially
ones that are suid root, and that it can be exploited fairly easily.  Could
somebody post or send me details how exploits based on the system() call work?
Detail would be good, as I am supposed to explain the security implications
to my boss at our next meeting.

Thanks in advance.

-Steve


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[2720] in bugtraq

system() call in suid programs

daemon@ATHENA.MIT.EDU (Not Joe)Fri Jun 14 12:33:01 1996

daemon@ATHENA.MIT.EDU (Not Joe)
Fri Jun 14 12:33:01 1996