Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Linux bug discovered

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread
This topic is archived.
Home » Discuss » The DU Lounge Donate to DU
 
Nomad559 Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Jun-15-04 06:22 AM
Original message
Linux bug discovered
http://www.theinquirer.net/?article=16596

-Snip-

A Linux bug has been discovered which allows a whole system to be exploited by a simple C program.

On the site Linuxreviews.org the discoverer Øyvind Sæther, from Norway, said that using the exploit requires the (ab)user to have shell access or other means of uploading and running the program—like cgi-bin and FTP access. Then it is just a matter of running this code which works on any normal user account.

Along with the code needed to use the exploit, Sæther also posted several patches to 2.4 and 2.6 kernels that will keep the exploit from crashing systems.

Printer Friendly | Permalink |  | Top
mrfrapp Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Jun-15-04 06:30 AM
Response to Original message
1. Patch
Edited on Tue Jun-15-04 06:31 AM by mrfrapp
Patch here also
Printer Friendly | Permalink |  | Top
 
Kellanved Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Jun-15-04 06:35 AM
Response to Original message
2. not a big thing
It is just another local post-authentication Denial of Service attack; as most end-users won't give out shell log-ins to untrustworthy/unknown users, I fail to see the problem. It went unnoticed for years, and is already patched.

And even without patch: a simple command will fix the problem: userdel -r ;-)
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view 
this author's profile Click to add 
this author to your buddy list Click to add 
this author to your Ignore list Thu Dec 26th 2024, 10:38 PM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » The DU Lounge Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators


Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC