Linux 2.6.30 exploit posted

Posted by Army | Tuesday, March 23, 2010

Title says it all, exploit is at:
http://grsecurity.net/~spender/cheddar_bay.tgz

Everything is described and explained in the exploit.c file.
I exploit a bug that by looking at the source is unexploitable;
I defeat the null ptr dereference protection in the kernel on
both systems with SELinux and those without.
I proceed to disable SELinux/AppArmor/LSM/auditing

Exploit works on both 32bit and 64bit kernels.

Links to videos of the exploit in action are present in the exploit
code.



Posts Relacionados
    This entry was posted on Tuesday, March 23, 2010 at at 10:01 AM and is filed under You can follow any responses to this entry through the RSS 2.0


    0 comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)