2010/1/27 irado furioso com tudo <ir...@bsd.com.br>: > There is a new local root bug in FreeBSD.This bug discovered & > exploited by Nikolaos Rangos also known as KingcopeThere is an > unbelievable simple local r00t bug in recent FreeBSD versions. > > The bug resides in the Run-Time Link-Editor (rtld). > Normally rtld does not allow dangerous environment variables like > LD_PRELOAD > to be set when executing setugid binaries like "ping" or "su". > With a rather simple technique rtld can be tricked into > accepting LD variables even on setugid binaries. > > Please read this advisory for more details: > http://securityreason.com/securityalert/6799 > > felizmente não é remoto, então só precisamos nos incomodar em > administrar melhor o acesso local > > divirtam-se ;)
Essa jah eh antiga irado, corrigida no ano passado :P http://security.freebsd.org/advisories/FreeBSD-SA-09:16.rtld.asc -- Renato Botelho ------------------------- Histórico: http://www.fug.com.br/historico/html/freebsd/ Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd