Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: [Full-disclosure] nginx exploit documentation, about a generic way to exploit Linux targets
Jul 24 2013 10:13AM
Albert Puigsech Galicia (albert puigsech com)
> "Ioctl is needed to set the nginx socket blocking so another call to write(2) will read much more memory than it is possible with the default non-blocking connection of nginx."
This vulnerability was published recently and it seems that many
exploiters got stuck because the so...
[ more ]
Copyright 2010, SecurityFocus