[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Samba 3.x + kernel 2.6.x local root vulnerability

To: frank@openminds.be (Frank Louwers)
Subject: Re: Samba 3.x + kernel 2.6.x local root vulnerability
From: Darren Reed <avalon@caligula.anu.edu.au>
Date: Thu, 12 Feb 2004 11:50:47 +1100 (Australia/ACT)

Cute, so the security problems of NFS are being reinvented with SMBFS.
I hope that traditional mount options such as "nosuid" will work ?

Also, can you create character/block device files on an smbfs partition
that you have root locally (and not remotel) to get you access to things
like /dev/kmem, etc ?

Darren

References:
- Re: Samba 3.x + kernel 2.6.x local root vulnerability
  - From: Frank Louwers <frank@openminds.be>

Prev by Date: [SECURITY] [DSA 437-1] New cgiemail packages fix open mail relaying
Next by Date: Re: Apache Http Server Reveals Script Source Code to Remote Users And Any Users Can Access The Forbidden Directory ("/WEB-INF/")
Previous by thread: Re: Samba 3.x + kernel 2.6.x local root vulnerability
Next by thread: Re: Samba 3.x + kernel 2.6.x local root vulnerability
Index(es):
- Date
- Thread