Full Disclosure mailing list archives
Re: Mozilla extensions: a security nightmare
From: Dave Horsfall <dave () horsfall org>
Date: Fri, 7 Aug 2015 17:35:33 +1000 (EST)
On Fri, 7 Aug 2015, Reindl Harald wrote:
# mount /home -o noexec"bash /home/whatever/binary" and you are done any attacker which don't know this would not come far at all
On my Mac (Yosemite 10.10.4): ozzie:~ dave$ bash /bin/sh /bin/sh: /bin/sh: cannot execute binary file -- Dave Horsfall DTM (VK2KFU) "Those who don't understand security will suffer" RIP Cecil the Lion; he was in pain for two days, thanks to some brave hunter. _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- Mozilla extensions: a security nightmare Stefan Kanthak (Aug 05)
- Re: Mozilla extensions: a security nightmare Mario Vilas (Aug 05)
- Re: Mozilla extensions: a security nightmare Thomas D. (Aug 11)
- Message not available
- Message not available
- Message not available
- Message not available
- Message not available
- Message not available
- Message not available
- Message not available
- Message not available
- Re: Mozilla extensions: a security nightmare Dave Horsfall (Aug 07)
- Message not available
- Re: Mozilla extensions: a security nightmare Mario Vilas (Aug 05)