BugTraq
GNU screen buffer overflow Nov 27 2003 01:29AM
Timo Sirainen (tss iki fi) (1 replies)
Re: GNU screen buffer overflow Dec 01 2003 11:41AM
Mariusz Woloszyn (emsi ipartners pl) (1 replies)
On Thu, 27 Nov 2003, Timo Sirainen wrote:

> Buffer overflow in GNU screen allows privilege escalation for local users.
> Usually screen is installed either setgid-utmp or setuid-root.
>
With devpts and libutempter it is possible to install fully functional
screen without suid/sgid.

--
Mariusz Wo³oszyn
Internet Security Specialist, GTS - Internet Partners

[ reply ]
Re: GNU screen buffer overflow Dec 01 2003 09:48PM
Kyle Sallee (cromwell metalab unc edu) (1 replies)
Re: GNU screen buffer overflow Dec 03 2003 07:36PM
Pavel Kankovsky (peak argo troja mff cuni cz) (1 replies)
Re: GNU screen buffer overflow Dec 03 2003 09:17PM
Casper Dik (casper holland sun com)


 

Privacy Statement
Copyright 2010, SecurityFocus