Home page logo
/

bugtraq logo Bugtraq mailing list archives

insecure signal handler design
From: Michal Zalewski <lcamtuf () bos bindview com>
Date: Mon, 28 May 2001 18:10:16 -0400 (EDT)


We are proud to announce our new security paper, "Delivering signals for
fun and profit". This paper is an attempt to discuss security aspects of
very common signal handler coding practices, describing theoretical
background and demonstrating actual attack scenarios against live code in
Unix environment.

The paper is available at:

  http://razor.bindview.com/publish/papers/signals.txt

For your convenience, it is attached to this message as well (20 kB). Your
feedback would be greatly appreciated.

-- 
_____________________________________________________
Michal Zalewski [lcamtuf () bos bindview com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=

Attachment: signals.txt
Description: signal delivery paper


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]