<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Bugtraq: Re: Linux kernel do_brk() proof-of-concept exploit code

Re: Linux kernel do_brk() proof-of-concept exploit code

From: Calum <bugtraq_at_umtstrial.co.uk>
Date: Tue, 2 Dec 2003 17:21:13 +0000

On Tuesday 02 December 2003 3:16 am, Christophe Devine wrote:

> The following program can be used to test if a x86 Linux system
> is vulnerable to the do_brk() exploit; use at your own risk.

This POC code needs nasm greater than 0.98.36, otherwise you get the following
error when trying to compile it.

exploit_at_womble exploit $ nasm -v
NASM version 0.98.36 compiled on Jul 17 2003
exploit_at_womble exploit $ nasm brk_poc.asm -o a.out
brk_poc.asm:5: error: attempt to set a negative program origin

It works with 0.98.38.

-- 
The early bird may get the worm, but the second mouse gets the cheese.
http://gk.umtstrial.co.uk/~calum/

Received on Dec 02 2003

This message: [ Message body ]
Next message: Cisco Systems Product Security Incident Response Team: "Cisco Security Advisory: SNMP trap Reveals WEP Key in Cisco Aironet AP"
Previous message: bugzilla_at_redhat.com: "[RHSA-2003:335-01] Updated Net-SNMP packages fix security and other bugs"
In reply to: Christophe Devine: "Linux kernel do_brk() proof-of-concept exploit code"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]