Date: Fri, 8 Sep 2000 13:07:31 -0700 (PDT) From: Kris Kennaway <kris@FreeBSD.org> To: Gabor Zahemszky <ZGabor@CoDe.hu> Cc: freebsd-security@freebsd.org Subject: Re: UNIX locale format string vulnerability (fwd) Message-ID: <Pine.BSF.4.21.0009081306100.39439-100000@freefall.freebsd.org> In-Reply-To: <20000908144707.F682@zg.CoDe.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 8 Sep 2000, Gabor Zahemszky wrote:
> On Thu, Sep 07, 2000 at 02:53:51AM -0700, Kris Kennaway wrote:
> > HOWEVER: no program shipped in the FreeBSD base system is believed to be
> > vulnerable to either of these problems.
> >
> > They both affect catopen(), and we don't use that function at all except
> > in tcsh, which is non-privileged. We don't even have any code which has
>
> Oops!
>
> On my 3.4R system, there is a little utility, named: ee (and ree), and it
> is using catopen(). I don't think it changed in 4.x, is it?
They are not privileged applications. You won't get anywhere but back
where you started by exploiting them.
Kris
--
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <forsythe@alum.mit.edu>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0009081306100.39439-100000>