[gdm-list] gdm-screenshot security bug
- From: "Anonymous Anonymous" <a master blaster gmail com>
- To: gdm-list gnome org
- Subject: [gdm-list] gdm-screenshot security bug
- Date: Thu, 5 Jun 2008 02:28:50 +0300
The gdm-screenshot utility suffers from a "symlink race" security hole. The image file has a predictable name and path so a malicious user can set a trap for other users by creating a symlink named /tmp/GDM-Screenshot.png which points to files otherwise not accessible by him. When the victim runs the program these files will be created or overrided with arbitrary junk.
Master Blaster.
P.S: I must say I'm not a native English speaker so please execuse me for any mistakes I might have done.
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
