Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Back To The Future: Unix Wildcards Gone Wild

From: Ivan Delalande <colona () ycc fr>
Date: Thu, 26 Jun 2014 19:56:27 +0200
Hi,

On Thu, Jun 26, 2014 at 10:40:21AM +0200, defensecode wrote:

We wanted to inform all major *nix distributions via our responsible
disclosure policy about this problem before posting it, because it is
highly likely that this problem could lead to local root access on many
distributions. But, since part of this research contained in the document
was mentioned on some blog entries, we are forced to release it in a
full version.

Download URL:
http://www.defensecode.com/public/DefenseCode_Unix_WildCards_Gone_Wild.txt


What kind of response are you expecting from the various distros on this
exactly? Having "noglob" option enabled by default on all the shells on
the system?

Thanks,
-- 
Ivan "Colona" Delalande

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
Previous By Date Next
Previous By Thread Next

Current thread: