Bugtraq mailing list archives

Re: /proc filesystem allows bypassing directory permissions on Linux

From: Dan Yefimov <dan () lightwave net ru>
Date: Sat, 24 Oct 2009 21:39:48 +0400

On 24.10.2009 20:59, Anton Ivanov wrote:

Not to tell about
that /proc/<PID>/fd/ contains only symbolic links, not files, so I can't
understand, how the original reporter managed to gain access to the file in the
restricted directory using that symlink.


The perms are definitely broken and without a code audit on procfs I
would not bet that this is limited just to this rather obscure test
case.

To be honest, I hope that it is limited to this rather obscure test
case. If it is not there may be entertaining ramifications.

Given my citation above (I personally use Linux), that obscure test case looksdoubtful. If the original reporter uses some patched kernel, that doesn't matterothers.

--

Sincerely Your, Dan.

Current thread:

Re: /proc filesystem allows bypassing directory permissions on Linux, (continued)
- - - Re: /proc filesystem allows bypassing directory permissions on Linux psz (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Marco Verschuur (Oct 27)
    - Re: /proc filesystem allows bypassing directory permissions on Linux psz (Oct 27)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Marco Verschuur (Oct 28)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 29)
    - Re: /proc filesystem allows bypassing directory permissions on Martin Rex (Oct 29)
    - Re: /proc filesystem allows bypassing directory permissions on Pavel Machek (Oct 30)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Anton Ivanov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Anton Ivanov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Anton Ivanov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Anton Ivanov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 29)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Ivan Jager (Oct 28)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Klaus Lichtenwalder (Oct 26)
- Re: /proc filesystem allows bypassing directory permissions on Linux Daryl Tester (Oct 26)
- Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Kankovsky (Oct 26)
  - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Kankovsky (Oct 26)
- Re: /proc filesystem allows bypassing directory permissions on Linux Tony Finch (Oct 26)

(Thread continues...)