[MPlayer-users] Setuid root mplayer
Jukka Tastula
jukka.tastula at kotinet.com
Wed Aug 28 16:07:01 CEST 2002
On Wednesday 28 August 2002 13:30, Davide Decicco wrote:
> Is someone able to explain me (or point me to some useful resource on the
> web) why setuid root mplayer is a security risk ? How can one gain root
> privileges through it ?
> Thanks.
Mplayer uses some codecs that are distributed binary only (or windows only) to
do its job. Lord only knows what those beasts will do when given authority.
Highly unlikely but I doubt there's anyone who can with certainty say these
things won't do anything funny (considering you could've downloaded them from
some not-so-trusted sites etc).
More information about the MPlayer-users
mailing list