[SCADASEC] Major Linux security hole found
Clint Bodungen
clint at cidgcorp.com
Tue Feb 12 12:58:53 CST 2008
You're right, I glanced at it too quickly and misread it. It's a memory
space data pipe/redirection. Thanks for keeping me in check! ;)
That being said, it's still a local privilege escalation vulnerability and
my mitigation comments still apply.
Clint
-----Original Message-----
From: scadasec-bounces at news.infracritical.com
[mailto:scadasec-bounces at news.infracritical.com] On Behalf Of ljknews
Sent: Tuesday, February 12, 2008 12:44 PM
To: scadasec at news.infracritical.com
Subject: Re: [SCADASEC] Major Linux security hole found
At 12:29 PM -0600 2/12/08, Clint Bodungen wrote:
> Yet another vulnerability caused by a buffer overflow.
Can you point out the language that says it is a buffer overflow ?
>From what I read (as a non-Linux person) this was a failure of
the system service to check the privilege of the caller to write
to the target memory area.
To me a buffer overflow on a system service call would be when
the service checks the target address but fails to account for
the length of the transfer requested.
--
Larry Kilgallen
_______________________________________________
To unsubscribe from this mailing list, please visit:
http://news.infracritical.com/mailman/listinfo/scadasec
To review our privacy statement, please visit:
http://www.infracritical.com/privacy.html
scadasec at news.infracritical.com
http://news.infracritical.com/mailman/listinfo/scadasec
More information about the scadasec
mailing list