ptrace/kmod local root exploit STILL unresolved in 2.4.21! - MY MISTAKE

From: Bojan Pogačar (bojan@gajba.net)
Date: Fri Jun 13 2003 - 17:19:19 EST

Next message: Shane Shrybman: "Re: 2.5.70-mm9"
Previous message: Dave Jones: "Re: 2.5.70 hangs on boot"
Next in thread: Bernhard Kaindl: "Re: ptrace/kmod local root exploit STILL unresolved in 2.4.21! - MY MISTAKE"
Reply: Bernhard Kaindl: "Re: ptrace/kmod local root exploit STILL unresolved in 2.4.21! - MY MISTAKE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've tested this exploit in wrong way. I've first logged in as root, then I
made "su nobody" and then exploit worked.

If I don't login as root at the beginning, I get operation not permited.. so
kernel is safe after all :)

Thanks 4 your time

Best regards,

Bojan Pogacar

> Hello,
>
> I've upgraded my linux box to 2.4.21 because of the securety reasons. Now
I
> found out that old local expoloit for ptrace is stil working under 2.4.21.
> Wasn't it fixed in RC1?
>
> In attachment I send you exploit, which is still working!
>
>
> Best regards,
>
> Bojan Pogacar
>

application/octet-stream attachment: c.c

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Shane Shrybman: "Re: 2.5.70-mm9"
Previous message: Dave Jones: "Re: 2.5.70 hangs on boot"
Next in thread: Bernhard Kaindl: "Re: ptrace/kmod local root exploit STILL unresolved in 2.4.21! - MY MISTAKE"
Reply: Bernhard Kaindl: "Re: ptrace/kmod local root exploit STILL unresolved in 2.4.21! - MY MISTAKE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Jun 15 2003 - 22:00:38 EST