64b Linux Exploit in the Wild
Results 1 to 3 of 3

Thread: 64b Linux Exploit in the Wild

  1. #1
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,188

    Exclamation 64b Linux Exploit in the Wild

    There is a 64b Linux exploit making its rounds. Details can be found here:

    http://isc.sans.edu/diary.html?storyid=9574

    The Full Disclosure list sponsored by secunia.com published an exploit regarding the CVE-2010-3081 vulnerability. It is triggered because of a stack pointer underflow regarding the function compat_alloc_user_space() inside arch/x86/include/asm/compat.h. This exploit is in the wild and it is highly recommended to implement the patch located at http://git.kernel.org/?p=linux/kerne...82d27a79a81ea6.
    and here:

    http://blog.ksplice.com/2010/09/cve-2010-3081/

    Im writing this blog post to provide some information and assistance to anyone affected by the recent Linux kernel vulnerability CVE-2010-3081, which unfortunately is just about everyone running 64-bit Linux. To make matters worse, in the last day weve received many reports of people attacking production systems using an exploit for this vulnerability, so if you run Linux systems, we recommend that you strongly consider patching this vulnerability. (Linux vendors release important security updates every month, but this vulnerability is particularly high profile and people are using it aggressively to exploit systems).
    This vulnerability was introduced into the Linux kernel in April 2008, and so essentially every distribution is affected, including RHEL, CentOS, Debian, Ubuntu, Parallels Virtuozzo Containers, OpenVZ, CloudLinux, and SuSE, among others.
    Ubuntu was patched on the 17th. RH remains unpatched as of 09.20.10 - Not sure about the other distros. There is a utility that you can run to see if this vulnerability has been exploited on one of your machines. It can be found on the SANS page linked above.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  2. #2
    HYBR|D
    Guest
    Interesting....

    Is this the one that was originally patched, then subsequently un-patched that i read about last week?

    Bout time *nix got itself some 0-day lovin..

  3. #3
    Senior Member Wazz's Avatar
    Join Date
    Apr 2003
    Posts
    288
    Yes it is.......and the author of the exploit code, Ac1db1tch3z, claim it's been in the wild for a few years (RedHat backported it into earlier kernel versions), and they removed from the exploit code the OpenVZ Payload / GRsec bypass.......ZOIKS!
    "It is a shame that stupidity is not painful" - Anton LaVey

Similar Threads

  1. Linux VS BSD (Funny and true/Old)
    By gore in forum Operating Systems
    Replies: 0
    Last Post: September 2nd, 2004, 08:14 AM
  2. Fork in Linux Road?
    By NullDevice in forum Operating Systems
    Replies: 1
    Last Post: April 13th, 2004, 09:38 PM
  3. Linux and 80 lines of stolen code??
    By cleanbash in forum *nix Security Discussions
    Replies: 34
    Last Post: June 18th, 2003, 07:24 AM
  4. Opinion: As Good as It Gets for Linux
    By TheFiend in forum AntiOnline's General Chit Chat
    Replies: 1
    Last Post: April 1st, 2003, 11:33 PM
  5. Installing Linux
    By Rewandythal in forum Other Tutorials Forum
    Replies: 5
    Last Post: December 12th, 2001, 09:29 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •