Re: OT? Are chroots immune to buffer overflows?

From: dev-null@no-id.com
Date: Wed May 22 2002 - 05:47:04 PDT

Next message: L. Walker: "Re: OT? Are chroots immune to buffer overflows?"

Previous message: Berend De Schouwer: "Re: OT? Are chroots immune to buffer overflows?"
Maybe in reply to: Jason Haar: "OT? Are chroots immune to buffer overflows?"
Next in thread: L. Walker: "Re: OT? Are chroots immune to buffer overflows?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jason Haar wrote:

> Most buffer overflows I've seen attempt to infiltrate the system enough to
> run /bin/sh. In chroot'ed environments, /bin/sh doesn't (shouldn't!) exist -
> so they fail.

> Is it as simple as that? As 99.999% of the system binaries aren't available
> in the jail, can a buffer overflow ever work?

No, its not as simple as that.  You might not be able to execute a shell, but you can still run arbitrary code.  See <http://online.securityfocus.com/archive/82/272793>.

--
This message has been sent via an anonymous mail relay at www.no-id.com.

Next message: L. Walker: "Re: OT? Are chroots immune to buffer overflows?"
Previous message: Berend De Schouwer: "Re: OT? Are chroots immune to buffer overflows?"
Maybe in reply to: Jason Haar: "OT? Are chroots immune to buffer overflows?"
Next in thread: L. Walker: "Re: OT? Are chroots immune to buffer overflows?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed May 22 2002 - 11:09:53 PDT