[Previo por Fecha] [Siguiente por Fecha] [Previo por Hilo] [Siguiente por Hilo]

[Hilos de Discusión] [Fecha] [Tema] [Autor]

[linux-security] Re: Linux GNOME exploit (fwd)



Lo mando con headers completos.

---------- Forwarded message ----------
Date: 28 Sep 1999 06:47:45 +0200
From: Chmouel Boudjnah <chmouel en mandrakesoft com>
To: Brock Tellier <btellier en WEBLEY COM>
Cc: BUGTRAQ en SECURITYFOCUS COM, Fun List <fun en linux-mandrake com>,
     gnome-devel-list en gnome org, security en linux-mandrake com,
     linux-security en redhat com
Subject: [linux-security] Re: Linux GNOME exploit
Resent-Date: 28 Sep 1999 06:03:35 -0000
Resent-From: linux-security en redhat com
Resent-cc: recipient list not shown: ;

Brock Tellier <btellier en WEBLEY COM> writes:

>     Virtually any program using the GNOME libraries is vulnerable to a
> buffer overflow attack.  The attack comes in the form:
> 
> /path/to/gnome/prog --enable-sound --espeaker=$80bytebuffer
> The following exploit should work against any GNOME program, though I
> tried it on (the irony) /usr/games/nethack, which is SGID root by default
> on RH6.0.  An attack on any program will look something like this:
> 
> [xnec@redhack gnox]$ uname -a; cat /etc/redhat-release; id
> Linux redhack 2.2.9-19mdk #1 Wed May 19 19:53:00 GMT 1999 i686 unknown
> Linux Mandrake release 6.0 (Venus)

Humm it's not a RedHat bugs but a Mandrake one.

The fixed package is available from our updates mirror, see :

http://www.linux-mandrake.com/en/fupdates.php3

or launch MandrakeUpdate.

Nota the security is only with 6.0 version, since 6.1 the package was
removed.

We advice to remove completely the package from your system if you are
maniac of security (and who aren't ?).

-- 
MandrakeSoft          http://www.mandrakesoft.com/
			         	 --Chmouel

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request en redhat com < /dev/null



[Hilos de Discusión] [Fecha] [Tema] [Autor]