Weiterer Linux Exploit
Posted: 2004-07-05 13:44
hallo, auf Heise.de wurde heute morgen ein weiterer kernel exploit veröffentlicht. betrifft der auch die kernel von CC? in meinem fall den 2.4er.
thx,
-native.
thx,
-native.
Im Klartext: wären die Kernel betroffen, hätte ich hier mindestens darauf hingewiesen, wenn nicht sogar schon neue Kernel fertig. ;)http://www.suse.de/de/security/2004_20_kernel.html wrote: Missing Discretionary Access Control (DAC) checks in the chown(2) system call allow an attacker with a local account to change the group ownership of arbitrary files, which leads to root privileges on affected systems. It is specific to kernel version 2.6 based systems such as the SUSE Linux 9.1 product, that only local shell access is needed to exploit this vulnerability.
[...]
An interesting variant of the missing checks is that the ownership of files in the /proc filesystem can be altered, while the changed ownership still does not allow the files to be accessed as a non-root user for to be able to exploit the vulnerability. Systems that are based on a version 2.4 kernel are not vulnerable to the /proc weakness, and exploitation of the weakness requires the use of the kernel NFS server (knfsd).