| |||||||||||||
suid-binary vulnerabilitiessuid-binary vulnerabilitiesPosted Oct 28, 2010 18:53 UTC (Thu) by RobSeace (subscriber, #4435)In reply to: suid-binary vulnerabilities by jreiser Parent article: Two glibc vulnerabilities
Oh, and I just realized that if a system were to do this for all setuid binaries,
then it would be very important for the linker to treat these "enhanced capability" programs just as it would setuid/setgid programs... Ie: don't allow $LD_PRELOAD and such... Otherwise, of course, it would be trivial for anyone to gain their enhanced capabilities... Which, while not as bad as gaining root, is still not something you want to make trivially easy to do...
(Log in to post comments)
suid-binary vulnerabilities Posted Oct 28, 2010 19:55 UTC (Thu) by spender (subscriber, #23067) [Link]
This is exactly what the AT_SECURE auxv entry already does.
-Brad
|
|||||||||||||