Re: Solaris 10 Port Stealing Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: Solaris 10 Port Stealing Vulnerability
From: Casper.Dik@xxxxxxxxxx
Date: Thu, 31 Mar 2011 17:18:38 +0200
Cc: Jim Harrison <Jim@xxxxxxxxxxxx>, "bugtraq@xxxxxxxxxxxxxxxxx" <bugtraq@xxxxxxxxxxxxxxxxx>
In-reply-to: <1301519536.11189.69.camel@rush>

>Imagine if you find a Solaris system running a web server that has a
>remote exploit which allows for the execution of arbitrary code. If the
>web server happens to be listening on the wildcard interface than you
>can very easily insert your own web server in front of it!


There SO_EXCLBIND setsockopt in Solaris which protects hijacking the port.

Casper

References:
- Solaris 10 Port Stealing Vulnerability
  - From: Chris O'Regan
- RE: Solaris 10 Port Stealing Vulnerability
  - From: Chris O'Regan

Prev by Date: [USN-1100-1] OpenLDAP vulnerabilities
Next by Date: BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload
Previous by thread: RE: Solaris 10 Port Stealing Vulnerability
Next by thread: HTB22903: XSS in Spitfire CMS
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux