| |||||||||||||
What of cron?What of cron?Posted Jul 13, 2006 14:39 UTC (Thu) by droundy (subscriber, #4559)In reply to: What of cron? by lysse Parent article: Denial of reality vulnerabilities
Cron is a trivial example, but there are plenty of programs that execute scripts located in particular directories of /etc (although perhaps not so often), so a bug that allows users to dump files in directories where they have no permissions I would say is inherently a priviledge escalation bug.
Yes, cron could be more careful, but on the other hand, relying on unix permissions to restrict users doesn't seem like an inherent security flaw.
(Log in to post comments)
What of cron? Posted Jul 13, 2006 17:57 UTC (Thu) by spitzak (guest, #4593) [Link] But most of those programs would get an error on the first "command" it found in the file of garbage and quit at that point, never able to reach the embedded command.
I would think a program that keeps parsing text from the file, ignoring errors no matter how bad they are, is a security hole, as this shows. I would suspect that not just cron is at fault, I would look at every older Unix utility.
What of cron? Posted Jul 21, 2006 5:59 UTC (Fri) by Cato (subscriber, #7643) [Link] Exactly - the fact that cron can execute strings found in the middle of core files is a security issue and should be fixed at the same time.
What of cron? Posted Jul 20, 2006 8:11 UTC (Thu) by robbe (guest, #16131) [Link] > but there are plenty of programs that execute scripts located in particular> directories of /etc"
Care to name a few affected programs/services?
Things that execute everything in a directory (e.g. /etc/rcX.d) are not vulnerable, because core files are not executable. I tried feeding one to bash, dash, and zsh all bombed out with errors (bash's being most wise).
There may be programs as stupid as cron, but they should be fixed, if only in the interest of safety (guard against errors).
|
|||||||||||||