Vulnerability Development mailing list archives
Re: Local root through vulnerability in ping on linux.
From: Matthew Wilson <msw () REDHAT COM>
Date: Mon, 21 Aug 2000 15:23:21 -0000
Gerrie wrote on 19 August 2000 12:18 Unfotunately I am not aware of any kernel issues concerning ping, but maybe the following is usefull for you or anyone else.
This is a code path only executed when running as root, so there's no explot here. It's a simple buffer overflow caused by such a large packet. If a non-root user runs this, ping exits. See http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=16677 for more detail.
Current thread:
- Re: Local root through vulnerability in ping on linux., (continued)
- Re: Local root through vulnerability in ping on linux. Murvai-Buzogany Laszlo (Aug 21)
- Re: Local root through vulnerability in ping on linux. Michal Zalewski (Aug 21)
- Re: Local root through vulnerability in ping on linux. Daniel Jacobowitz (Aug 21)
- Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
- Re: Local root through vulnerability in ping on linux. Hue-Bond (Aug 21)
- Re: Local root through vulnerability in ping on linux. Ronald Huizer (Aug 22)
- Re: Local root through vulnerability in ping on linux. geoff (Aug 22)
- Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
- Re: Local root through vulnerability in ping on linux. Michal Zalewski (Aug 22)
- Re: Local root through vulnerability in ping on linux. Matt Wilson (Aug 23)
- Re: Local root through vulnerability in ping on linux. mmurray (Aug 21)
- Re: Local root through vulnerability in ping on linux. Bluefish (P.Magnusson) (Aug 22)
- Re: Local root through vulnerability in ping on linux. Daniel Roesen (Aug 22)