Package: kernel-source-2.4.18
Version: N/A; reported 2005-01-10
Severity: critical
Justification: root security hole
Tags: security
$ id
uid=1000(zimage) gid=1000(zimage) groups=1000(zimage)
$ ./elflbl
child 1 VMAs 0
[+] moved stack bfffe000, task_size=0xc0000000, map_base=0xbf800000
[+] vmalloc area 0xc4400000 - 0xc8401000
Wait... |
[+] race won maps=6929
expanded VMA (0xbfffc000-0xffffe000)
[!] try to exploit 0xc4901000
[+] gate modified ( 0xffec90f4 0x0804ec00 )
[+] exploited, uid=0
sh-2.05a# id
uid=0(root) gid=0(root) groups=0(root),103(lpadmin)
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux home 2.4.18-1-586tsc #1 Wed Apr 14 17:57:38 UTC 2004 i586
Locale: LANG=C, LC_CTYPE=C
--
Theodor Milkov Head Network Administrator
CCNA, CCNP, MCP Davidov Electric Ltd.
http://www.del.bg Phone: +359 2 8702129
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
