January 17, 2002

NetBSD advisory: Close-on-exec, SUID and ptrace(2)

Author: JT Smith

From Nets-security.org: "A process could exec a setuid binary, while gaining ptrace control over it for a
short period before the process was activated. The ptrace controller process
could then modify the address space of the controlled process and abuse its
elevated privileges."

Category:

  • Linux
Click Here!