2009/8/17 Bungaran "Pinguingilo™ Eka Suryadi <[email protected]>: > waduh... > All Linux 2.4/2.6 versions since May 2001 are believed to be affected: > > * Linux 2.4, from 2.4.4 up to and including 2.4.37.4 > * Linux 2.6, from 2.6.0 up to and including 2.6.30.4 > > dah dicoba di 4 Distro langsung dapet root....walah...walah....
di Fedora Core R 6 : Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: SMP Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: CPU: 0 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: EIP is at 0x8048e72 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: eax: 8004003b ebx: eee03660 ecx: 00000000 edx: c165dd20 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: esi: ec657580 edi: e174bf50 ebp: e174be88 esp: e174be60 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: ds: 007b es: 007b ss: 0069 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: Process exploit (pid: 15173, ti=e174b000 task=de0db870 task.ti=e174b000) Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: Stack: ee0eca25 c082df40 c0ba7a14 00000000 c165dd20 ec657580 e18be508 00000000 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: c1a40c00 8004003b 00001000 c05a3af1 00001000 00000000 c0693aa0 00001000 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: c0446d06 00001000 c037b220 00000000 c0693aa0 00000000 c165dd20 000001ff Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: Call Trace: Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: Inexact backtrace: Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<ee0eca25>] ext3_mark_inode_dirty+0x38/0x3f [ext3] Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c05a3af1>] sock_sendpage+0x3d/0x42 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0446d06>] file_send_actor+0x3b/0x53 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c04479e6>] do_generic_mapping_read+0x1bc/0x49b Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0447d1b>] generic_file_sendfile+0x56/0x68 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0446ccb>] file_send_actor+0x0/0x53 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0465f05>] do_sendfile+0x1d3/0x27e Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0446ccb>] file_send_actor+0x0/0x53 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c04660c9>] sys_sendfile+0x84/0x94 Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0609a89>] do_page_fault+0x0/0xc3c Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: [<c0404ea7>] syscall_call+0x7/0xb Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: ======================= Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: Code: Bad EIP value. Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... rajawali kernel: EIP: [<08048e72>] 0x8048e72 SS:ESP 0069:e174be60 NO ROOT di CentOS release 4.6 (Final) : [re...@localhost wunderbar_emporium]$ ./exploit [+] MAPPED ZERO PAGE! [+] Resolved security_ops to 0xffffffff [+] Resolved sel_read_enforce to 0xffffffff sampe sekarang blom ada perkembangan NO ROOT, saya tungguin dah kalo perlu sa minggu sampe dia ROOT nie dah seharian di Ubuntu 8.04 Linux phoniex 2.6.24-16-server #1 SMP Thu Apr 10 13:15:38 UTC 2008 x86_64: ./exploit -bash: ./exploit: No such file or directory Secara ga ada gcc/cc yang di install, rasanya bodoh betul naro gcc, g++, dan compiler laen d server produksi, semua admin tau ini Nah karena ke tiga server saya tidak ada yang dapet ROOT jadi saya bisa nyante, buat yang ubuntu server saya harus installlin gcc dulu baru dia jalan, yang Centos tau dah masih ngambang aje padahal ada cc tapi minus mplayer, yang Fedora Core nampaknya saya harus ngoprek dulu, mungkin bisa berhari2 atau minggu (capee deh ....) -- Resza There is a different between: Rahmatan Lil Alamin and Rahmatan Lil Bill Gates The III -- Berhenti langganan: [email protected] Arsip dan info: http://linux.or.id/milis
