Bugtraq mailing list archives

Reading read-protected devices in *BSD

From: feyrer () RFHS8012 FH-REGENSBURG DE (Hubert Feyrer)
Date: Sun, 6 Sep 1998 15:52:05 +0200


In {Free,Net,Open}BSD, any user can mount a filesystem as long as he owns
the mountpoint, and has appropriate access to the device to mount from.
Almost! For the cd9660 filesystem (and at least on NetBSD, the filecorefs)
this second check was not performed, and any user was able to and access a
CDROM whether /dev/cd0a was accessible to him or not.

This was fixed in NetBSD on 19980905 by Charles Hannum, the problem is
still present in Free- and OpenBSD as of the time of this writing.


 - Hubert

--
Hubert Feyrer <hubert.feyrer () rz uni-regensburg de>

Current thread:

Buffer overflow in bash 1.14.7(1) Joao Manuel Carolino (Sep 04)
- Re: Buffer overflow in bash 1.14.7(1) Michael Riepe (Sep 05)
- Re: Buffer overflow in bash 1.14.7(1) Wichert Akkerman (Sep 05)
  - Re: Buffer overflow in bash 1.14.7(1) Chet Ramey (Sep 08)
- sshd exploit? Navindra Umanee (Sep 05)
  - Re: sshd exploit? Seth David Schoen (Sep 06)
  - Reading read-protected devices in *BSD Hubert Feyrer (Sep 06)
    - Re: Reading read-protected devices in *BSD Todd C. Miller (Sep 06)
    - Re: Reading read-protected devices in *BSD Eivind Eklund (Sep 06)
- Another way to crash HP 5M/5N printers bwoodard () CISCO COM (Sep 05)
- Windows File Share Scanner ZyklonB Zombie (Sep 05)
- Re: Buffer overflow in bash 1.14.7(1) Fiji (Sep 10)
  - Re: Buffer overflow in bash 1.14.7(1) Razvan Dragomirescu (Sep 10)
  - Fw: Exploit for SCO. Leshka (Sep 10)
    - Re: Fw: Exploit for SCO. John W. Temples (Sep 11)
  - ISS Vulnerability Alert: Windows Backdoors Update X-Force (Sep 10)
  - security problems with jidentd Mitchell Blank Jr (Sep 10)

(Thread continues...)