[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[stalk:00344] $B%"!<%,%9!Mx(B($B>e(B)

To: security-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [stalk:00344] $B%"!<%,%9!Mx(B($B>e(B)
From: KOJIMA Hajime / $B>.EgH%(B <kjm@xxxxxxxxxxxxxxxxxx>
Date: Wed, 25 Apr 2001 18:26:50 +0900

(B
(B
(B  $B%"!<%,%9!Mx(B($B>e(B)
(B
(B<http://www.hotwired.co.jp/news/news/technology/story/20010425301.html>
(B
(B  $B$@$=$&$G$9!#%"!<%,%9http://www.argus-systems.com/events/infosec/>
(B
(B  $B$G!"(B
(B
(B---- http://www.argus-systems.com/events/infosec/
(B> The LSD hack was not an exploit of the PitBull software. LSD
(B> became aware of a vulnerability in Intel x86 operating
(B> systems through a posting to the NetBSD advisory (that
(B> vulnerability was not discovered by LSD). LSD was able to use
(B> that vulnerability to create a kernel level vulnerability in
(B> the base Solaris x86 operating system that was running on the
(B> system that Argus had deployed for the hacking challenge. The
(B> vulnerability exploited by LSD relates specifically to
(B> operating system implementations supporting the Intel x86
(B> architecture. In addition to Solaris for x86, the vulnerability
(B> may affect other operating systems that support the
(B> Intel x86 architecture. 
(B
(B  $B$@$=$&$J$s$G$9$,!"$3$l$C$F(B NetBSD Security Advisory 2001-002
(B  Vulnerability in x86 USER_LDT validation $B$N$3$H$J$s$G$9$+$M$(!#(B
(B  $BB>$K$=$l$C$]$$$b$N$r;W$$IU$+$J$$$N$G$9$,!#(B
(B
(B---- http://mail-index.netbsd.org/netbsd-announce/2001/02/16/0000.html
(B> The problem affects other Operating Systems also:
$B!D!D(B
(B> * Sun Solaris/x86 has the same bug, in a different
(B>   implementation of a similar mechanism.
(B
(B----
(B// $BLZ2<@'M:!VM}2J7O$N:nJ85;=Q!WCf8x?7=q(B 624 $B$rFI$b$&(B!!
(B
$B>.Eg(B $BH%(B - KOJIMA Hajime
(B[Office] kjm@xxxxxxxxxxxxxxxxxx, http://www.st.ryukoku.ac.jp/~kjm/
(B         Phone: 077-543-7414  Fax: 077-543-0706
(B--
(B- $B$3$N%a%$%j%s%0%j%9%H$K4X$9$khttp://www.infoseek.co.jp/ISCamp?svx=971122

Follow-Ups:
- [stalk:00345] Re: $B%"!<%,%9!Mx(J($B>e(J)
  - From: Shikap

Prev by Date: [stalk:00343] $B:G6a$N$"$d$7(B$B$$%Q%1%C%H(B
Next by Date: [stalk:00345] Re: $B%"!<%,%9!Mx(J($B>e(J)
Previous by thread: [stalk:00342] Re: [FYI] ADMutate
Next by thread: [stalk:00345] Re: $B%"!<%,%9!Mx(J($B>e(J)
Index(es):
- Date
- Thread

[stalk:00344] $B%"!<%,%9!Mx(B($B>e(B)

[stalk:00344] $B%"!<%,%9!Mx(B($B>e(B)