Full Disclosure mailing list archives

Re: Linux kernel 0day - dynamite inside, don't burn your fingers

From: James Lay <jlay () slave-tothe-box net>
Date: Fri, 14 Jul 2006 14:42:25 -0600

On Fri, 14 Jul 2006 21:35:17 +0100 (BST)
"Joanna R." <h00lyshit () yahoo ie> wrote:

Hello,

attached 0day kernel 2.6 local root exploit. This is a new genuine
bug,  unpatched in 2.6.17.4 - don't get confused by prctl inside - it
is only used to change process status.

The code exploits a root race in /proc

have a nice day.



Seg faults on my slackware 2.6.17.4 system

James

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Linux kernel 0day - dynamite inside, don't burn your fingers Joanna R. (Jul 14)
- Re: Linux kernel 0day - dynamite inside, don't burn your fingers James Lay (Jul 14)
- Re: Linux kernel 0day - dynamite inside, don't burn your fingers Rodrigo Barbosa (Jul 14)
- Re: Linux kernel 0day - dynamite inside, don't burn your fingers Dan B (Jul 14)
  - Re: Linux kernel 0day - dynamite inside, don't burn your fingers Rodriguez [ackstorm] (Jul 14)
    - Re: Linux kernel 0day - dynamite inside, don't burn your fingers Brian Jung Myeng Lee (Jul 14)
- Re: Linux kernel 0day - dynamite inside, don't burn your fingers Jeff D (Jul 14)
- <Possible follow-ups>
- Re: Linux kernel 0day - dynamite inside, don't burn your fingers Joanna R. (Jul 14)
  - Re: Linux kernel 0day - dynamite inside, don't burn your fingers James Lay (Jul 14)
- Linux kernel 0day - dynamite inside, don't burn your fingers Joanna R. (Jul 14)
  - Re: Linux kernel 0day - dynamite inside, don't burn your fingers James Lay (Jul 14)
- Linux kernel 0day - dynamite inside, don't burn your fingers Joanna R. (Jul 14)