> > As for the kernel bug that triggered this discussion - I can't seem to > locate whether it still affects us or not. Do you have any proof of > concept for the bug so I can test? > > Shachar
Shachar and Shlomi, As pointed out by Noam, the vulnerability is the binfmt_elf vulnerability that was discovered recently (about 20 days ago) which affects the Linux kernel versions 2.6.9 and prior. The article in SecuriTeam not only contains an analysis but also a proof of concept for you to experiment with in order to test your system. The article can be found at: http://www.securiteam.com/unixfocus/6B00F1PBPY.html Regards, -- Eli Kara Beyond Security Ltd. http://www.beyondsecurity.com/ http://www.securiteam.com/ The First Integrated Network and Web Application Vulnerability Scanner: http://www.beyondsecurity.com/webscan-wp.pdf
