Re: ipop3d (x2) / pine (x2) / Linux kernel (x2) / Midnight

From: Stefan Rompf (srompfat_private)
Date: Tue Apr 06 1999 - 10:57:25 PDT

Next message: Ronald A. Jarrell: "Re: ICQ Webserver bug"

Previous message: Chris Sterling: "Re: Xylan OmniSwitch "features""
Next in thread: Viktor Fougstedt: "Re: ipop3d (x2) / pine (x2) / Linux kernel (x2) / Midnight"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello Michal,

At 01:41 07.03.99 +0100, you wrote:

>Exploited overflow in ipop3d could be used to gain superuser access (the
>only thing done by ipop3d is setuid+setgid, no seteuid/setreuid).

Fortunately, you are wrong here. Quoting from the Solaris' setuid() manpage:

    If the effective user ID of the process calling setuid()  is
    the  super-user, the real, effective, and saved user IDs are
    set to the uid parameter.

Linux behaves the same way, IMHO this is defined in POSIX.

cu.. Stefan

Next message: Ronald A. Jarrell: "Re: ICQ Webserver bug"
Previous message: Chris Sterling: "Re: Xylan OmniSwitch "features""
Next in thread: Viktor Fougstedt: "Re: ipop3d (x2) / pine (x2) / Linux kernel (x2) / Midnight"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:41:41 PDT