Results 1 to 9 of 9

Thread: do_brk() exploit

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

December 31st, 2003, 12:15 AM #1
groovicus

View Profile

View Forum Posts

Visit Homepage
Senior Member

Join Date

Aug 2003

Posts

1,018
do_brk() exploit

I hadn't seen this posted yet.... one of the kernels affected is Linux Kernel 2.4.22 which came with my version of RedHat 9.

Proof of Concept: http://www.derkeiler.com/Mailing-Lis...3-12/0017.html

more information: http://isec.pl/vulnerabilities/isec-0012-do_brk.txt

the exploit: http://www.k-otik.net/exploits/12.02.brk_poc.asm.php

And: http://core.geekheim.de/archives/000515.html

/me skips away singing "a patchin I will go...

EDIT: I did find a paper where this has been seen in the wild, but I can't remember where I found it... DOH!

Found it: https://utils.its.caltech.edu/piperm...03/000000.html

HijackThis Team
Reply With Quote

Quick Navigation *nix Security Discussions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: do_brk() exploit

Thread Tools

Display

Threaded View

do_brk() exploit

Posting Permissions