New kernel bug - remote root capable [merged]

http://isec.pl/vulnerabilities04.html

"Impact:
=======

Since no special privileges are required to use the mremap(2) system
call any process may misuse its unexpected behavior to disrupt the kernel
memory management subsystem. Proper exploitation of this vulnerability may
lead to local privilege escalation including execution of arbitrary code
with kernel level access. Proof-of-concept exploit code has been created
and successfully tested giving UID 0 shell on vulnerable systems.

The exploitability of the discovered vulnerability is possible, although
not a trivial one. We have identified at least two different attack
vectors for the 2.4 kernel series. All users are encouraged to patch all
vulnerable systems as soon as appropriate vendor patches are released."

Updated kernels appear to already be at http://www.kernel.org/

Good way to start out the day New kernel bug - remote root capable [merged]

-David

 

 

 

 

Top