Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 2 Apr 2000 18:22:05 -0700 (PDT)
From:      Benedict Hadiono <hbenedict_fbsd@yahoo.com>
To:        "Joseph McLeod <lists@whiteh0use.net>" <lists@whiteh0use.net>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: 3.3-RELEASE --- procfs hole 
Message-ID:  <20000403012205.23613.qmail@web4204.mail.yahoo.com>

next in thread | raw e-mail | index | archive | help
Joseph,

I wonder if 3.4-STABLE has fixed the problem.

Rgds,
Benny




--- "Joseph McLeod <lists@whiteh0use.net>"
<lists@whiteh0use.net> wrote:
> 
> 
> On Sun, 2 Apr 2000, Benedict Hadiono wrote:
> 
> > Joseph,
> > 
> > Thank you for your information on this error.
> > Can you please elaborate what does this problem
> can
> > practically cause some damage/risks.
> 
> Well, someone gave me an account on there freebsd
> 3.3-RELEASE box to test
> there security.  While search packetstorm for
> freebsd exploits, i found a
> procfs bug, similar to a procfs bug that was in fbsd
> 2.1.x or at least i
> believe so.  I was able to root the box with a
> little modification of the
> code and a simple command after that.  For it to
> work (since its only a
> local exploit), it would have to be a user of yours
> thats on the box, or
> you would have to have another remotely exploitable
> piece of software tha
> the attacker could use to get a shell, then he could
> use the local exploit
> to gain root access.
> 
> Here is a link with alot more information:
> 
>
http://packetstorm.securify.com/0001-exploits/procfs4.htm
>  
> > For us to upgrade to 3.4-Stable is not an easy job
> > since we have the system already in the
> > production/operation.
> > 
> > Thanks again and look forward to your further
> info.
> > 
> > rgds,
> > Benny
> > 
> > --- "Joseph McLeod <lists@whiteh0use.net>"
> > <lists@whiteh0use.net> wrote:
> > > hey, I noticed you said you were running fbsd
> > > 3.3-RELEASE, you may already
> > > know this, but there is a procfs hole in the
> > > version.  Its a local
> > > exploit, but all the same, i figured you might
> wanna
> > > know.  I guess you
> > > could either umount /proc or upgrade to
> 3.4-STABLE,
> > > which doesn't seem to
> > > be affected (or at least not with the same
> exploit
> > > code).
> > > 
> > > 
> > > 
> > 
> > __________________________________________________
> > Do You Yahoo!?
> > Talk to your friends online with Yahoo! Messenger.
> > http://im.yahoo.com
> > 
> 
> 

__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000403012205.23613.qmail>