Za, bisa kamu coba exploit ini : http://seclists.org/fulldisclosure/2009/Aug/0180.html
Apa di sistem kamu aman ? On 8/17/09, Resza Ciptadi <[email protected]> wrote: > 2009/8/17 Bungaran "Pinguingiloâ„¢ Eka Suryadi <[email protected]>: >> waduh... >> All Linux 2.4/2.6 versions since May 2001 are believed to be affected: >> >> * Linux 2.4, from 2.4.4 up to and including 2.4.37.4 >> * Linux 2.6, from 2.6.0 up to and including 2.6.30.4 >> >> dah dicoba di 4 Distro langsung dapet root....walah...walah.... > > di Fedora Core R 6 : > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: SMP > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: CPU: 0 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: EIP is at 0x8048e72 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: eax: 8004003b ebx: eee03660 ecx: 00000000 edx: > c165dd20 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: esi: ec657580 edi: e174bf50 ebp: e174be88 esp: > e174be60 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: ds: 007b es: 007b ss: 0069 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: Process exploit (pid: 15173, ti=e174b000 > task=de0db870 task.ti=e174b000) > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: Stack: ee0eca25 c082df40 c0ba7a14 00000000 c165dd20 > ec657580 e18be508 00000000 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: c1a40c00 8004003b 00001000 c05a3af1 00001000 > 00000000 c0693aa0 00001000 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: c0446d06 00001000 c037b220 00000000 c0693aa0 > 00000000 c165dd20 000001ff > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: Call Trace: > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: Inexact backtrace: > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<ee0eca25>] ext3_mark_inode_dirty+0x38/0x3f [ext3] > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c05a3af1>] sock_sendpage+0x3d/0x42 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0446d06>] file_send_actor+0x3b/0x53 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c04479e6>] do_generic_mapping_read+0x1bc/0x49b > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0447d1b>] generic_file_sendfile+0x56/0x68 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0446ccb>] file_send_actor+0x0/0x53 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0465f05>] do_sendfile+0x1d3/0x27e > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0446ccb>] file_send_actor+0x0/0x53 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c04660c9>] sys_sendfile+0x84/0x94 > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0609a89>] do_page_fault+0x0/0xc3c > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: [<c0404ea7>] syscall_call+0x7/0xb > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: ======================= > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: Code: Bad EIP value. > > Message from sysl...@rajawali at Mon Aug 17 16:19:45 2009 ... > rajawali kernel: EIP: [<08048e72>] 0x8048e72 SS:ESP 0069:e174be60 > > NO ROOT > > di CentOS release 4.6 (Final) : > [re...@localhost wunderbar_emporium]$ ./exploit > [+] MAPPED ZERO PAGE! > [+] Resolved security_ops to 0xffffffff > [+] Resolved sel_read_enforce to 0xffffffff > > sampe sekarang blom ada perkembangan NO ROOT, saya tungguin dah kalo > perlu sa minggu sampe dia ROOT nie dah seharian > > di Ubuntu 8.04 Linux phoniex 2.6.24-16-server #1 SMP Thu Apr 10 > 13:15:38 UTC 2008 x86_64: > ./exploit > -bash: ./exploit: No such file or directory > > Secara ga ada gcc/cc yang di install, rasanya bodoh betul naro gcc, > g++, dan compiler laen d server produksi, semua admin tau ini > > Nah karena ke tiga server saya tidak ada yang dapet ROOT jadi saya > bisa nyante, buat yang ubuntu server saya harus installlin gcc dulu > baru dia jalan, yang Centos tau dah masih ngambang aje padahal ada cc > tapi minus mplayer, yang Fedora Core nampaknya saya harus ngoprek > dulu, mungkin bisa berhari2 atau minggu (capee deh ....) > > > -- > Resza > > There is a different between: > Rahmatan Lil Alamin and Rahmatan Lil Bill Gates The III > > -- > Berhenti langganan: [email protected] > Arsip dan info: http://linux.or.id/milis > > -- Berhenti langganan: [email protected] Arsip dan info: http://linux.or.id/milis
