mentby.com
Blog | Jobs | Help | Signup | Login

Any one seen this: http://www.zdnet.com/news/linux-kernel-exploit-roots-64-bit-[..]

Any comment?

--
Gerard Hooton.
Department of Microelectronic Engineering U.C.C.
Butler Building,
Enterprise Centre,
North Mall.
Cork.

Tel: +353 21 4904576
Fax: +353 21 4904573 http://www.ue.ucc.ie/

--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Gerard Hooton Wed, 22 Sep 2010 12:23:47 -0700

That's a serious problem, admin should patch it ASAP. it's not difficult to
get a local user shell.

--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Luker Luker Wed, 22 Sep 2010 14:04:49 -0700

Already fixed in Fedora.

--
Regards,

Frank Murphy
UTF_8 Encoded
Friend of Fedora
--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Frank Murphy (Frankly3D) Wed, 22 Sep 2010 14:11:39 -0700

Where can I get the exploit code?
At  http://www.seclists.org/fulldisclosure/2010/Sep/268  I found a link to
ABftw_c.bin called ABftw.c
What is that ?
How do I use it?
What will it do?

//Ger

--
Gerard Hooton.
Department of Microelectronic Engineering U.C.C.
Butler Building,
Enterprise Centre,
North Mall.
Cork.

Tel: +353 21 4904576
Fax: +353 21 4904573 http://www.ue.ucc.ie/

--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Gerard Hooton Wed, 22 Sep 2010 14:20:01 -0700

http://www.exploit-db.com/exploits/15023/

You need to compile it, start there: http://www.google.ie/search?source=ig&hl=en&rlz=&[..]

It will the world as you know, a bit as if you were type google on the
google search engine (quote from the IT crowd :)

More seriously, many places you can get that exploit. As every
exploit, read the code first. I am not highly proficient in C, still
you get the gist of the exploit.

Steph (ps, patched on Ubuntu and Debian systems too)
--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Steph (frlinux) Wed, 22 Sep 2010 14:27:21 -0700

I compiled 15023.c and ran it on
2.6.9-67.ELsmp #1 SMP Wed Nov 7 13:56:44 EST 2007 x86_64 x86_64 x86_64
GNU/Linux

I got :-
symbol table not available, aborting!

--
Gerard Hooton.
Department of Microelectronic Engineering U.C.C.
Butler Building,
Enterprise Centre,
North Mall.
Cork.

Tel: +353 21 4904576
Fax: +353 21 4904573 http://www.ue.ucc.ie/

--
Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Gerard Hooton Wed, 22 Sep 2010 14:50:38 -0700

(and back-ported by Redhat to their 2.6.18 kernel).  Your kernel is too
old to be exposed.  OTOH, it's so old you've probably got a host of other
issues to worry about ;-|

-Ronan

Irish Linux Users' Group mailing list
About this list :  http://mail.linux.ie/mailman/listinfo/ilug
Who we are :  http://www.linux.ie/
Where we are :  http://www.linux.ie/ map/


Ronan Mullally Thu, 23 Sep 2010 02:24:15 -0700



Post a Comment