File access problems in lpr/lpd. RHSA-1999:041-01 (1999), Redhat Security Advisory Home/Search Document Not in Database Summary Related Articles Check |
This paper is cited in the following contexts:
Improving Computer Security using Extended Static Checking - Chess (2002) (12 citations) (Correct)
....As is often the case, writing a program that allows only limited access to root resources has proven problematic. A security hole in the version of lpr distributed with Redhat Linux versions 4.1 through 6. 1 was the result of a race condition involving the way file permissions were checked [25]. As Figure 5 shows, the program first checked to see if the user had permission to read the file, then (acting as root) opened the file. If the user could substitute a legitimate file with a file they did not have permission to read (probably by changing a soft link) between the time that lpr ....
File access problems in lpr/lpd. Redhat Security Advisory, October 1999. RHSA-1999:041-01.
International Journal of Information Security manuscript No. - Will Be Inserted (Correct)
No context found.
File access problems in lpr/lpd. RHSA-1999:041-01 (1999), Redhat Security Advisory
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC