Wednesday, October 12, 2005

Path-based dlopen issue

Here's another one that exploits the sticky bit. The removal of the sticky bit, which they recommend, is an interesting idea, but I can't see how that wouldn't disable the entire system... never tried it though...

I got to this link via another link from a security blog, this one talks about using dbagent. Funny - they state "A valid workaround to nearly any Progress security hole is to remove the suid bit from all binaries." So....the big question, does it work??

0 Comments:

Post a Comment

<< Home