nanog mailing list archives
one shot remote root for linux?
From: Gadi Evron <ge () linuxbox org>
Date: Tue, 28 Apr 2009 17:10:16 +0300
This is one of them mysterious and rare cases where a non router OS vulnerability may affect network operations.
Sometimes news finds us in mysterious yet obvious ways.HD Moore (respected security researcher) set a status which I noticed on my twitter:
@hdmoore reading through sctp_houdini.c - one-shot remote linux kernel root - http://kernelbof.blogspot.com/ I asked him about it on IM, wondering if it is real: "looks like that but requires a sctp app to be running" Naturally, I retweeted. Signed, @gadievron
Current thread:
- one shot remote root for linux? Gadi Evron (Apr 28)
- Re: one shot remote root for linux? andrew.wallace (Apr 28)
- Re: one shot remote root for linux? Christopher Morrow (Apr 28)
- RE: one shot remote root for linux? Crooks, Sam (Apr 28)
- Re: one shot remote root for linux? Nathan Ward (Apr 28)
- RE: one shot remote root for linux? Gregory Boehnlein (Apr 28)
- RE: one shot remote root for linux? Paul Jakma (Apr 30)
- Re: one shot remote root for linux? Andre Gironda (Apr 30)
- Re: one shot remote root for linux? Paul Jakma (Apr 30)
- Re: one shot remote root for linux? Daryl G. Jurbala (Apr 30)
- Re: one shot remote root for linux? Christopher Morrow (Apr 28)
- Re: one shot remote root for linux? andrew.wallace (Apr 28)
- Re: one shot remote root for linux? Nathan Ward (Apr 29)