[LUGOS-SEC] Ptrace vulnerability se enkrat
Stojan Rancic
stojan at aufbix.org
Tue Apr 15 17:22:23 CEST 2003
Hojla Nejc,
Tuesday, April 15, 2003, 4:29:11 PM, si napisal(a):
> Stvar je kar resna:
V prvi konzoli:
root at box# echo foo > /proc/sys/kernel/modprobe
v drugi konzoli:
stojan at box:~$ uname -a
Linux box 2.4.20 #2 Sun Mar 30 00:11:39 CET 2003 i686 unknown
stojan at box:~$ gcc -o pt ptrace-kmod.c
stojan at box:~$ ./pt
[+] Attached to 14805
[-] Fatal error: Unknown error 125
Killed
stojan at box:~$
.. torej, ja, zadevo se da precej enostavno blokirat, ampak to se ne
pomeni, da zdaj ni treba it patchat kernelov ;)
GreetZ, Stojan
---------------
Don't use no double negatives.
More information about the lugos-sec
mailing list