[<prev] [next>] [day] [month] [year] [list]
Message-ID: <BAY117-W18DFB0B8FFA452624D4EDEC2DF0@phx.gbl>
Date: Thu, 16 Aug 2007 05:22:19 +0000
From: Jimby Sharp <jimbysharp@...mail.com>
To: monikerd <monikerd@...il.com>, <joey.mengele@...hmail.com>
Cc: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk,
sebastian@...fgarten.com
Subject: Re: McAfee Virus Scan for Linux and Unix v5.10.0
Local Buffer Overflow
Security comes into play here because a user can create a malicious play that would overflow the virus scan. Consequently the user can execute code with the privileges of the user running virus scan. Thus, it is a local privilege escalation scenario.
----------------------------------------
> Date: Wed, 15 Aug 2007 18:53:18 +0200
> From: monikerd@...il.com
> To: joey.mengele@...hmail.com
> CC: sebastian@...fgarten.com; full-disclosure@...ts.grok.org.uk; bugtraq@...urityfocus.com
> Subject: Re: [Full-disclosure] McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow
>
> Joey Mengele wrote:
> > Where does security come into play here? This is a local crash in a
> > non setuid binary. I would like to hear your remote exploitation
> > scenario. Or perhaps your local privilege escalation scenario?
> >
> > J
> >
_________________________________________________________________
With Windows Live Hotmail, you can personalize your inbox with your favorite color.
www.windowslive-hotmail.com/learnmore/personalize.html?locale=en-us&ocid=TXT_TAGLM_HMWL_reten_addcolor_0607
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists