Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

There is an incorrect access control vulnerability that can write file anywhere #165

Closed
plusls opened this issue Aug 9, 2018 · 3 comments

Comments

@plusls
Copy link

plusls commented Aug 9, 2018

The online Judge's sandbox have an incorrect access control vulnerability that can write file anywhere.
User can get the directory list and write it to /tmp. At last user can leak file data by #include

such as:

#include "/tmp/datafile"

There is my test submit:
creat file
leak data

@plusls plusls changed the title There is a incorrect access control vulnerability that can write file anywhere There is an incorrect access control vulnerability that can write file anywhere Aug 9, 2018
@virusdefender
Copy link
Contributor

非常尴尬,感谢,已经在处理了。

@virusdefender
Copy link
Contributor

大佬麻烦加一下我的微信吧,和 GitHub 用户名一样,请你喝杯咖啡。

@virusdefender
Copy link
Contributor

那几个系统调用还没加限制,主要修改了下目录权限。

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants