[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Bug#149454: uudecode bug (?)
|
From: |
Dr. Peter Bieringer |
|
Subject: |
Re: Bug#149454: uudecode bug (?) |
|
Date: |
Mon, 10 Jun 2002 15:22:58 +0200 |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --On Montag, 10. Juni 2002 15:14 +0200 Santiago Vila <address@hidden>
wrote:
> I repeat: It's the uudecode command that is "dangerous", as well as
> "cp", "rm" or just redirection, not the usage of symlinks or pipes.
Tell this companies which are using uudecode in insecure manner like ISS
Real Secure OS Sensor for Linux installer...
In version rsss6.5.2001.351-i686-linux-release.gz (April 2002) they don't
check for existing pipe or symlink on extraction like:
sed 's/^X//' << 'SHAR_EOF' | uudecode &&
begin 600 /var/tmp/dmn6.5.2001.351-i686-linux-release
Filename is well-known...
A screening of non-deb or non-rpm installers of commercial programs perhaps
shows more such issues.
Peter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6-2 (MingW32)
iD8DBQE9BKgyznfbvpHmKq4RAqBkAKCkamV9janf+RThLCwe5A8NoGKvIQCfeI3G
Y1B95eva//9D+/dcrEesYss=
=O8Yn
-----END PGP SIGNATURE-----