Date: Sun, 16 Oct 2005 10:15:23 +0200 From: Mathieu Arnold <mat@mat.cc> To: Kris Kennaway <kris@obsecurity.org>, Stephen Major <smajor@gmail.com> Cc: freebsd-security@freebsd.org Subject: Re: GID Games Exploits Message-ID: <4FB7164D6E6041F49E3BEE97@cc-126-240.int.t-online.fr> In-Reply-To: <20051016044712.GA27867@xor.obsecurity.org> References: <4351d9bd.6245f154.4f04.ffffb6ef@mx.gmail.com> <20051016044712.GA27867@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
+-le 16/10/2005 00:47 -0400, Kris Kennaway =E9crivait : | On Sat, Oct 15, 2005 at 09:39:27PM -0700, Stephen Major wrote: |> It has come to my attention that there are quite a few local exploits |> circling around in the private sector for GID Games. |>=20 |> =20 |>=20 |> Several of the games have vanilla stack overflows in them which can lead = to |> elevation of privileges if successfully exploited. |=20 | Big deal..that's why they're setgid games (which can only write to | game data files) and not setuid anything important :-) It means that I can change my own score to something better, that's very important :-) --=20 Mathieu Arnold
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4FB7164D6E6041F49E3BEE97>