- TalkBack 2 of 30:
- Next »
- « Previous
- Thread View
- Flat View
- nope - and here are the details
-
Naw, it's a bug in the open-source PERL app "webmin". They used the PERL syslog call incorrectly. That's not to say that the same class of problem might not exist in other applications, if they are also coded to stuff user-supplied text into a format string, which is pretty dumb.
What happened in webmin is that, instead of providing a static format to syslog, plus arguments, they passed the arguments in the format itself. In other words instead of saying
printf "%s", "long string with $user supplied values";
the code essentially did this:
printf "long string with $user supplied values";
where that long string becomes the format, and there are no actual arguments.
Is this exploitable in any application that uses PERL? No. Is it possible that some PERL-based applications have the bug? Yes, but at a very low probability - the coder has to be using formats incorrectly AND put user-supplied data in them.
P.S. - I have not yet seen an explanation, much less an example, of how one goes from the format vulnerability to an actual compromise - it would still be necessary to overwrite code somewhere that, when invoked as root, would execute malicious code. - Posted by: GDF Posted on: 11/30/05 You are currently: a Guest | Members login | Terms of Use
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
- Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
- The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Save time with automated shipping solutions
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Visit the UPS Business Essentials Guide
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
-
-
Smart Tech
Expert advice on innovations in healthcare and the green technologies that make it happen.
Find out more
-
Smart Business
Discussion and advice on management issues that revolve around making your world smarter and more useful.
More Smart Advice
-
Smart People
The best and worst moves in the management and strategy trenches.
Learn More
