[devel] [lcamtuf на bos.bindview.com: insecure signal handler design]
Dmitry V. Levin
=?iso-8859-1?q?ldv_=CE=C1_alt-linux=2Eorg?=
Вт Май 29 11:14:12 MSD 2001
----- Forwarded message from Michal Zalewski <lcamtuf на bos.bindview.com> -----
Date: Mon, 28 May 2001 18:10:16 -0400 (EDT)
From: Michal Zalewski <lcamtuf на bos.bindview.com>
To: BUGTRAQ на SECURITYFOCUS.COM
Cc: SECPROG на SECURITYFOCUS.COM, SECPAPERS на SECURITYFOCUS.COM
Subject: insecure signal handler design
X-Nmymbofr: Nir Orb Buk
We are proud to announce our new security paper, "Delivering signals for
fun and profit". This paper is an attempt to discuss security aspects of
very common signal handler coding practices, describing theoretical
background and demonstrating actual attack scenarios against live code in
Unix environment.
The paper is available at:
http://razor.bindview.com/publish/papers/signals.txt
For your convenience, it is attached to this message as well (20 kB). Your
feedback would be greatly appreciated.
--
_____________________________________________________
Michal Zalewski [lcamtuf на bos.bindview.com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=
----- End forwarded message -----
Regards,
Dmitry
+-------------------------------------------------------------------------+
Dmitry V. Levin mailto://ldv@alt-linux.org
ALT Linux Team http://www.altlinux.ru/
Fandra Project http://www.fandra.org/
+-------------------------------------------------------------------------+
UNIX is user friendly. It's just very selective about who its friends are.
----------- следующая часть -----------
Было удалено вложение не в текстовом формате...
Имя : =?iso-8859-1?q?=CF=D4=D3=D5=D4=D3=D4=D7=D5=C5=D4?=
Тип : application/pgp-signature
Размер : 232 байтов
Описание: =?iso-8859-1?q?=CF=D4=D3=D5=D4=D3=D4=D7=D5=C5=D4?=
Url : <http://lists.altlinux.org/pipermail/devel/attachments/20010529/5abd2a19/attachment-0001.bin>
Подробная информация о списке рассылки Devel