[Gllug] Open Office downloading over https?

Peter Corlett abuse at cabal.org.uk
Thu Jun 25 09:27:53 UTC 2009


On Thu, Jun 25, 2009 at 09:58:08AM +0100, Kostas Georgiou wrote:
[...]
> If you use firefox to download+open a file the application it execs
> inherits all open fds since firefox doesn't bother with close-on-exec[1].
> So it's possible that the traffic was from the download of the file and by
> the time you checked it has finished and was opened inside openoffice.

> [1] I wonder if this "feature" can be exploited in some way. 

Doubtful.

If the thing you've launched can access arbitrary file descriptors that may
have been left open, it's probably got the ability to make fresh network
connections, or attach a debugger to your Firefox process and compromise it
that way.

-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list