Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Click here to return to the 'SUID scripts are still unsafe in OS/X' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
SUID scripts are still unsafe in OS/X
Authored by: gshenaut on Apr 21, '05 02:38:57PM

The suggestion that "modern unices" are not vulnerable to the suid #! script race condition because they pass an open fd to the script may or may not be true (based on other messages here, "modern unix" usually means "versions of Linux I am familiar with"), but it doesn't apply to OS/X. If you'll page back through the previous articles in this hint, you'll find my documentation of a sucessful exploit of this race condition to get a root shell prompt on OS/X 10.3.9. Please, don't use analogies with other versions of UNIX to make generalization about OS/X: analogies are useful in generating hypotheses, but the hypotheses still need to be tested!

Greg Shenaut

[ Reply to This | # ]