RE: FreeBSD Security Advisory FreeBSD-SA-04:15.syscons

From: Darren Pilgrim (dmp_at_bitfreak.org)
Date: 10/05/04

  • Next message: Alex de Kruijff: "Re: compare-by-hash (was Re: sharing /etc/passwd)"
    To: <freebsd-security@freebsd.org>
    Date: Mon, 4 Oct 2004 16:15:07 -0700
    
    

    > FreeBSD-SA-04:15.syscons
    <...>
    > IV. Workaround
    >
    > There is no known workaround. However, this bug is only exploitable
    > by users who have access to the physical console or can otherwise open
    > a /dev/ttyv* device node.

    Is there anything in the base system that, by design or flaw, can be used by
    a non-root user to open a ttyv device?

    Is the tty snoop device vulnerable by proxy?

    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"


  • Next message: Alex de Kruijff: "Re: compare-by-hash (was Re: sharing /etc/passwd)"

    Relevant Pages

    • Re: Impossibly Slow Load-Time for Cross-Reference Window Items
      ... > fixed in SP1. ... > Clive's Word 2001 Workaround: ... > with MacWord than the reload bug itself. ... >> to go through before I can clear an update for installation on the ...
      (microsoft.public.mac.office.word)
    • Re: [Full-Disclosure] Microsoft Cries Wolf ( again )
      ... > The ZDNet article hit the point right on the head. ... While I agree, that you should at least provide some kind of workaround, I ... strongly disagree with criminalizing anyone who stands for full disclosure. ... "A bug like this could be triggered via a number of means...through e-mail, ...
      (Full-Disclosure)
    • Re: ~$Normal.dot
      ... An AutoRecovery Save file is named "AutoRecovery save of. ... What I meant to "complain" actually point out is the method in which Microsoft addresses their bugs. ... An explanation of why it sticks around ALWAYS and a workaround would in my opionion be the correct way of addressing this bug. ...
      (microsoft.public.word.application.errors)
    • Re: (another) infuriating IE bug
      ... I think this is a bug in IE, at least in ECMAScript terms it is a bug. ... undefined error - so f1 is not on the scope chain prior to its ... instructions to assign to a Reference with a null "Base" object by using ... French there is no word for "workaround"; ...
      (comp.lang.javascript)
    • Re: OE6 - Default Save Attachments Folder
      ... For a workaround to that problem, ... Unfortunately the> update itself has a bug that prevents the new fix from working. ... The> user-selected path for attachments is indeed written to the registry, but> the final character in the path name is dropped, which means it won't work. ... > Hal Hostetler, CPBE -- hhh@kvoa.com ...
      (microsoft.public.internet.mail)