Bart Oldeman wrote:
On 10/19/06, James Courtier-Dutton <James@xxxxxxxxxxxxxx> wrote:
The dosemu binary has a rwx stack segment, so this means that
instructions can be placed on the stack and executed.
This makes it a lot easier to exploit than in the stack was rw-
The source objects src/env/video/remap_asm.o and
src/env/video/vesabios_pm.o cause this.
There were actually a few other files too, namely the 16bit bios.o and
vesabios.o files; those were not found by the tool you referred too.
Not surprisingly because they were linked in a strange way.
It's been corrected in SVN changes 1622 and 1623.
Thanks,
Bart
Thank you. It is an easy thing to fix, and makes it considerably more
difficult for a cracker to develop and exploit.
-
To unsubscribe from this list: send the line "unsubscribe linux-msdos" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
