RedHat: Buffer Overflow in 'ls' and 'mkdir'
Daniel M. Kurry
gh at over-yonder.net
Sun Oct 24 21:49:20 PDT 2004
Jerry Bell said something like:
> A healthy bit of skepticism goes a long way. I choked on the first
> sentence: "Redhat found a vulnerability in fileutils (ls and mkdir), that
> could allow a remote attacker to execute arbitrary code with root
> privileges." The word "remote" stands out like a sore thumb to me.
>
*cough
Then again, RedHat is one of those *Linux derivatives* that are smelling
more like Windows by the day. 'ls' could perform a dictionary lookup to
point out spelling errors in filenames.
Daniel, "Hey, this is -chat, right?" 8-) 8-)
More information about the freebsd-chat
mailing list