Thursday, December 09, 2010

Another Linux Kernel Exploit

Dan Rosenberg has once again issued another PoC (Proof of Concept) about Linux Kernel Exploit for those running Linux Kernel older than 2.6.37. The PoC was sent to BugTraq and i saw it on LWN. It uses three vulnerabilities to get root, all of which were discovered by Nelson Elhage.

Dan said that he tested this exploit on Ubuntu 10.04 kernels, both x86 and x86-64, but i couldn't reproduce this exploit in Slackware-Current, custom kernel Probably because the Slackware's kernel doesn't have Econet protocol enabled in the kernel which makes the process failed. It ended with a [*] Failed to open file descriptors error message.