Re: Possible exploit potential in dosemu.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Bart Oldeman wrote:
On 10/19/06, James Courtier-Dutton <James@xxxxxxxxxxxxxx> wrote:
The dosemu binary has a rwx stack segment, so this means that
instructions can be placed on the stack and executed.
This makes it a lot easier to exploit than in the stack was rw-

The source objects src/env/video/remap_asm.o and
src/env/video/vesabios_pm.o cause this.

There were actually a few other files too, namely the 16bit bios.o and
vesabios.o files; those were not found by the tool you referred too.
Not surprisingly because they were linked in a strange way.

It's been corrected in SVN changes 1622 and 1623.

Thanks,
Bart
Thank you. It is an easy thing to fix, and makes it considerably more difficult for a cracker to develop and exploit.


-
To unsubscribe from this list: send the line "unsubscribe linux-msdos" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Console]     [Linux Audio]     [Linux for Hams]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Yosemite Camping]     [Yosemite Hiking]     [MIPS Linux]     [ARM Linux]     [Linux RAID]     [Samba]     [Linux Media]     [Fedora Users]

  Powered by Linux