Bugtraq mailing list archives
insecure signal handler design
From: Michal Zalewski <lcamtuf () bos bindview com>
Date: Mon, 28 May 2001 18:10:16 -0400 (EDT)
We are proud to announce our new security paper, "Delivering signals for fun and profit". This paper is an attempt to discuss security aspects of very common signal handler coding practices, describing theoretical background and demonstrating actual attack scenarios against live code in Unix environment. The paper is available at: http://razor.bindview.com/publish/papers/signals.txt For your convenience, it is attached to this message as well (20 kB). Your feedback would be greatly appreciated. -- _____________________________________________________ Michal Zalewski [lcamtuf () bos bindview com] [security] [http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};: =-=> Did you know that clones never use mirrors? <=-=
Attachment:
signals.txt
Description: signal delivery paper
Current thread:
- insecure signal handler design Michal Zalewski (May 29)
- Re: insecure signal handler design Magosányi (May 30)