Bugtraq mailing list archives
Re: libresolv+ bug
From: coxa () cableol net (Alan Cox)
Date: Tue, 20 Aug 1996 09:25:07 +0100
Well, if the text segment is read-only, that makes it rather difficult to patch the binary. But if the binary has privilege to go setuid,
No no no, this is a perpetual fiction item I keep meeting. If its not being setuid at the time you can use ptrace() to patch it. You can use mprotect to change the protection of the C library image (its COW so it doesnt hurt others). Your code space is not some mythical sanctuary. Alan
Current thread:
- Re: libresolv+ bug Don Lewis (Aug 19)
- <Possible follow-ups>
- Re: libresolv+ bug der Mouse (Aug 19)
- Re: libresolv+ bug Alan Cox (Aug 20)
- Re: libresolv+ bug Thomas Ptacek (Aug 20)
- Re: libresolv+ bug Julian Assange (Aug 21)
- Re: libresolv+ bug John Nemeth (Aug 20)
- Re: libresolv+ bug Andi Gutmans (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
- Re: libresolv+ bug Elliot Lee (Aug 20)
- Re: libresolv+ bug Nick Andrew (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
- SigSev -> Security Hole Tim Smithers (Aug 20)
- Re: SigSev -> Security Hole Brian Mitchell (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
(Thread continues...)