[Full-disclosure] Multiple OS kernel insecure handling of stdio file descriptor
Shiva Persaud
shivapd at austin.ibm.com
Fri Jan 19 23:19:32 GMT 2007
On Thu, Jan 18, 2007 at 10:21:52PM +0800, XFOCUS Security Team wrote:
>
> XFOCUS team (http://www.xfocus.org/) had discovered Multiple OS kernel
> insecure handling of stdio file descriptor.
>
> ===================
> Affected OS Version
>
> AIX 5.3
The AIX Security Team can be reached at security-alert at austin.ibm.com.
We have investigated this issue and AIX is not affected. A privileged
process will not inherit closed file descriptors for stdio, stdout and
stderr.
Thanks,
Shiva Persaud
--
Shiva Persaud / AIX Security Development
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070119/cfacfff5/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.