Linux Init Default Umask Vulnerability

Certain versions of the Linux kernel create the init process with umask set to 0000.

The initialization scripts that ship with some linux distributions rely on inheriting a safe umask from 'init' and execute without setting it explicitly.

This condition opens up the possibility for security vulnerabilities because the init scripts create sensitive files.

It has been demonstrated that there is at least one way for an attacker to gain root privileges due to this condition.


 

Privacy Statement
Copyright 2010, SecurityFocus