BugTraq
Linux kernel exploit Dec 07 2010 08:25PM
Dan Rosenberg (dan j rosenberg gmail com) (3 replies)
Re: Linux kernel exploit Dec 10 2010 11:52PM
Wolf (crate live com) (1 replies)
Re: Linux kernel exploit Dec 13 2010 10:00PM
Stefan Roas (sroas roath org)
RE: [Full-disclosure] Linux kernel exploit Dec 08 2010 05:58PM
John Jacobs (flamdugen hotmail com) (1 replies)

> I've included here a proof-of-concept local privilege escalation exploit
> for Linux. Please read the header for an explanation of what's going
> on. Without further ado, I present full-nelson.c:

Hello Dan, is this exploitation not mitigated by best practice
defense-in-depth strategies such as preventing the CAP_SYS_MODULE
capability or '/sbin/sysctl -w kernel.modules_disabled=1' respectively? 
It seems it'd certainly stop the Econet/Acorn issue.

Curious to hear your input as I fear too many rely solely on errata updates and not a good defense-in-depth approach.

> Happy hacking,
> Dan

Cheers,
John Jacobs

[ reply ]
Re: [Full-disclosure] Linux kernel exploit Dec 10 2010 09:08AM
Stefan Roas (sroas roath org)
Re: [Full-disclosure] Linux kernel exploit Dec 07 2010 09:06PM
Cal Leeming [Simplicity Media Ltd] (cal leeming simplicitymedialtd co uk) (1 replies)
Re: [Full-disclosure] Linux kernel exploit Dec 07 2010 09:21PM
Ryan Sears (rdsears mtu edu)


 

Privacy Statement
Copyright 2010, SecurityFocus