Displaying 1 result from an estimated 1 matches for "topcat".
Did you mean:
tomcat
2003 Apr 07
0
timing related vunlerability that reveals whether files exist without regard to permissions
...e the time discrepancy
between trying to open an existing and non-existent file.
NOTE: I needed to remove the O_SYNC flag from the "int flags" line (it
doesn't seem to exist on 4.7-R) and I needed to include the
<sys/time.h> header file in the exploit to make it work.
[njyoder@topcat ~/temp]$ uname -a
FreeBSD topcat.mine.nu 4.7-RELEASE-p6 FreeBSD 4.7-RELEASE-p6 #21: Sat Mar 1 06:07:58 EST 2003 njyoder@topcat.mine.nu:/usr/obj/usr/src/sys/TOPCAT i386
[njyoder@topcat ~/temp]$ ./evil
[+] creating unreachable
[+] creating unreachable/iexist
[+] chmod 0'ing unreachable
[+]...