oss-sec mailing list archives
Re: CVE request: mono loading shared libs from cwd
From: Josh Bressers <bressers () redhat com>
Date: Wed, 10 Nov 2010 14:40:00 -0500 (EST)
Please use CVE-2010-4159 Thanks. -- JB ----- "Thomas Biege" <thomas () suse de> wrote:
missed to add: http://lists.ximian.com/pipermail/mono-patches/2010-October/177900.html Am Mittwoch 10 November 2010 15:18:26 schrieb Thomas Biege:Hello folks, from our bugzilla. " http://www.mono-project.com/DllNotFoundException explains that themonoruntime searches the current working directory for DLLs. This opens aserioussecurity hole. Malicious code can be given the same name as a DLL and leftin adirectory the user might visit. Also, it means that no monoapplicationcan safely set the current working directory. Microsoft themselves addressed this issue in Windows http://msdn.microsoft.com/en-us/library/ms682586(v=VS.85).aspx It's a well known "dummies" question for Unix why you must not have"." onyour pathhttp://www.unix.com/unix-dummies-questions-answers/22806-why-bad-idea-insert- dot-path.html Mono is exposing users to these same old hat problems. (As a related problem, many mono programs seem to *assume* that theywillbe run with the CWD set to their installed directory, and break ifitisn't.) " Filed by Richard Brooksby.-- Thomas Biege <thomas () suse de>, SUSE LINUX, Security Support & Auditing SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg) -- Wer aufhoert besser werden zu wollen, hoert auf gut zu sein. -- Marie von Ebner-Eschenbach
Current thread:
- CVE request: mono loading shared libs from cwd Thomas Biege (Nov 10)
- Re: CVE request: mono loading shared libs from cwd Thomas Biege (Nov 10)
- Re: CVE request: mono loading shared libs from cwd Josh Bressers (Nov 10)
- Re: CVE request: mono loading shared libs from cwd Thomas Biege (Nov 10)