Re: WINE + NX (No eXecute) support for x86, 2.6.7-rc2-bk2

From: Jesse Pollard
Date: Wed Jun 09 2004 - 11:55:09 EST

Next message: Andy: "XFS over NFS corruption"
Previous message: Chris Mason: "Re: [STACK] >3k call path in reiserfs"
In reply to: Robert White: "RE: WINE + NX (No eXecute) support for x86, 2.6.7-rc2-bk2"
Next in thread: Robert White: "RE: WINE + NX (No eXecute) support for x86, 2.6.7-rc2-bk2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tuesday 08 June 2004 16:50, Robert White wrote:
> I would think that having an easy call to disable the NX modification would
> be both safe and effective. That is, adding a syscall (or whatever) that
> would let you mark your heap and/or stack executable while leaving the new
> default as NX, is "just as safe" as flagging the executable in the first
> place.

ahhhh no.

The first attack against a vulerable server would be to load a string
on the stack that would:
1. have address of the syscall to turn off NX, then return to the stack.
2. have normal worm/virus code following.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andy: "XFS over NFS corruption"
Previous message: Chris Mason: "Re: [STACK] >3k call path in reiserfs"
In reply to: Robert White: "RE: WINE + NX (No eXecute) support for x86, 2.6.7-rc2-bk2"
Next in thread: Robert White: "RE: WINE + NX (No eXecute) support for x86, 2.6.7-rc2-bk2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]