Exploiting Concurrency Vulnerabilities in System Call Wrappers

@article{citeulike:1664862, abstract = {System call interposition allows the kernel security model to be extended. However, when combined with current operating systems, it is open to concurrency vulnerabilities leading to privilege escalation and audit bypass. We discuss the theory and practice of system call wrapper concurrency vulnerabilities, and demonstrate exploit technques against GSWTK, Systrace, and CerbNG.}, author = {Watson, Robert N. }, booktitle = {WOOT'07 First USENIX Workshop on Offensive Technologies}, citeulike-article-id = {1664862}, keywords = {firewall, multithreading, operating-systems, security}, organization = {USENIX}, posted-at = {2007-09-17 08:10:13}, priority = {4}, title = {Exploiting Concurrency Vulnerabilities in System Call Wrappers}, url = {http://www.watson.org/\~{}robert/2007woot/} }

TY - JOUR ID - citeulike:1664862 L3 - citeulike-article-id:1664862 TI - Exploiting Concurrency Vulnerabilities in System Call Wrappers T2 - WOOT'07 First USENIX Workshop on Offensive Technologies OR - USENIX N2 - System call interposition allows the kernel security model to be extended. However, when combined with current operating systems, it is open to concurrency vulnerabilities leading to privilege escalation and audit bypass. We discuss the theory and practice of system call wrapper concurrency vulnerabilities, and demonstrate exploit technques against GSWTK, Systrace, and CerbNG. KW - firewall KW - multithreading KW - operating-systems KW - security AU - Watson, Robert UR - http://www.watson.org/~robert/2007woot/ ER -