Bugtraq: Re: GNU screen buffer overflow

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: GNU screen buffer overflow

From: Pavel Kankovsky <peak () argo troja mff cuni cz>
Date: Wed, 3 Dec 2003 20:36:10 +0100 (MET)

On Mon, 1 Dec 2003, Kyle Sallee wrote:

With devpts and libutempter it is possible to install fully functional
screen without suid/sgid.


Does that mean any program that links with libutempter gains
complete suid/sgid root functionality, or only when executing 
the functions in the libutempter library, please?


This means you do not need setuid root because devpts sets up the slave
pty owner and group automatically and you do not need direct access to
utmp/wtmp, e.g. via setgid utmp, because libtempter functions call an
external setgid utmp helper called utempter to modify those files (the
calling process is required to hold a corresponding master pty).

--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."

By Date By Thread

Current thread:

Re: GNU screen buffer overflow Mariusz Woloszyn (Dec 01)
- Re: GNU screen buffer overflow Kyle Sallee (Dec 03)
  - Re: GNU screen buffer overflow Pavel Kankovsky (Dec 03)
    - Re: GNU screen buffer overflow Casper Dik (Dec 03)