[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

perl suid exploit

From: Michael Mansour <micoots yahoo com>
To: fedora-legacy-list redhat com
Subject: perl suid exploit
Date: Fri, 8 Jul 2005 13:55:26 +1000 (EST)

Hi,

I run perl 5.8.3 in suid mode on Fedora Core 1, and
have recently detected an attempted exploit which
basically crashed my system (well, I was able to
recover by removing the 15 byte /etc/ld.so.preload
file which tries to reference, as part of the exploit,
a /tmp/getuid.so file).

I've brought the server up again, but am not sure now
how I can defend against this attack since FC1 and
perl 5.8.3 are the latest.

Anyone have any suggestions?

Thanks.

Michael.


Send instant messages to your online friends http://au.messenger.yahoo.com

Follow-Ups:
- Re: perl suid exploit
  - From: Matthew Miller

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]