perl suid exploit
Michael Mansour
micoots at yahoo.com
Fri Jul 8 03:55:26 UTC 2005
Hi,
I run perl 5.8.3 in suid mode on Fedora Core 1, and
have recently detected an attempted exploit which
basically crashed my system (well, I was able to
recover by removing the 15 byte /etc/ld.so.preload
file which tries to reference, as part of the exploit,
a /tmp/getuid.so file).
I've brought the server up again, but am not sure now
how I can defend against this attack since FC1 and
perl 5.8.3 are the latest.
Anyone have any suggestions?
Thanks.
Michael.
Send instant messages to your online friends http://au.messenger.yahoo.com
More information about the fedora-legacy-list
mailing list