Path-based dlopen issue
Here's another one that exploits the sticky bit. The removal of the sticky bit, which they recommend, is an interesting idea, but I can't see how that wouldn't disable the entire system... never tried it though...
I got to this link via another link from a security blog, this one talks about using dbagent. Funny - they state "A valid workaround to nearly any Progress security hole is to remove the suid bit from all binaries." So....the big question, does it work??
0 Comments:
Post a Comment
<< Home