FreeBSD bug grants local root access (FreeBSD 6.x)
Chris Rees
utisoft at googlemail.com
Wed Sep 16 15:37:46 UTC 2009
2009/9/16 Xin LI <delphij at delphij.net>:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Chris Palmer wrote:
>> utisoft at googlemail.com writes:
>>
>>> It appears to only affect 6.x.... and requires local access. If an
>>> attacker has local access to a machine you're screwed anyway.
>>
>> No, the thing you're screwed anyway by is local *physical* access. Merely
>> running a process as a non-root local user should *not* be a "you're screwed
>> anyway" scenario. The fundamental security guarantee of a modern operating
>> system is that different principals cannot affect each other's resources
>> (user chris cannot read or write user jane's email -- let alone root's
>> email). This bug breaks that guarantee, and is definitely not a ho-hum bug.
>
> Exactly. This type of vulnerability could turn into a serious threat if
> being used with some other vulnerabilities that allows code injection,
> which is worse.
>
> Cheers,
> - --
> Xin LI <delphij at delphij.net> http://www.delphij.net/
Ahem, I must read posts correctly first. Beg pardon, I'll type that
100 times this evening.
Chris
--
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in a mailing list?
More information about the freebsd-security
mailing list