Re: [Full-Disclosure] Syscall implementation could lead to whether or not a file exists

From: Arjan van de Ven (arjanvat_private)
Date: Mon Apr 07 2003 - 03:47:00 PDT

Next message: Erik Parker: "[DDI-1013] Buffer Overflow in Samba allows remote root compromise"

Previous message: andrewgat_private: "Re: [Full-Disclosure] Re: Syscall implementation could lead to whether or not a file exists"
In reply to: Andrew Griffiths: "[Full-Disclosure] Syscall implementation could lead to whether or not a file exists"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2003-04-02 at 21:19, Andrew Griffiths wrote:
> Product: Linux and various other kernels
> Tested:
> 	- RedHat kernel 2.4.18-26.7.x (second latest ;))
> 	- RedHat kernel 2.4.18-27.7.x
> 	- Debian 3.0 box
> 	- FreeBSD 4.4
> 
> Description:
> 
> 	Due to the implementation of various system calls,  it becomes
> 	possible to test whether or not a file exists in a directory
> 	that is unreadable.

.. by calling lstat(2).  Ability to do lookup is controlled by _exec_
permissions, not read ones.

application/pgp-signature attachment: This is a digitally signed message part

_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Erik Parker: "[DDI-1013] Buffer Overflow in Samba allows remote root compromise"
Previous message: andrewgat_private: "Re: [Full-Disclosure] Re: Syscall implementation could lead to whether or not a file exists"
In reply to: Andrew Griffiths: "[Full-Disclosure] Syscall implementation could lead to whether or not a file exists"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Apr 07 2003 - 04:47:12 PDT