» »

Total pwnage

Total pwnage

denial ::

... in Linux kernel land
KLIK

Naj nekdo pošlje naslednje vrstice Linusu:
I'm wondering why kernel developers (or vendors?) continue to claim that kernel memory corruption are just Denial of Service. Most of the times they _are_ exploitable... yes, even when the vulnerability is remotely triggered, yes... even when the corruption takes place in a freaking slub in the middle of a kernel _heap_ ... yes even when you have kernel data pages marked NX and the kernel .text read-only and yes, absolutely yes even when you start only with a 16-bit displacement...


Fucking awseome!!!
SELECT finger FROM hand WHERE id=3;

PaX_MaN ::

awseome

Awesome.

Icematxyz ::

That particular vulnerability is long fixed in the kernel, but the whole posting is worth a read for those interested in how a kernel buffer overflow can become a remote root exploit

denial ::

@Icematxyz:
Kaj sploh hočeš povedati? Exploit dokazuje nekaj drugega kar si ti očitno zgrešil.
SELECT finger FROM hand WHERE id=3;

Vredno ogleda ...

TemaSporočilaOglediZadnje sporočilo
TemaSporočilaOglediZadnje sporočilo
»

Mac OS Snow Leopard na PC

Oddelek: Operacijski sistemi		484692 (3240) Gray_Warden_
»

Nov članek: "All your firmware are belong to us" (strani: 1 2 3 )

Oddelek: Novice / Nova vsebina		13816648 (13488) arrigo
»

Skoraj že obupal pri inštalaciji Linuxa

Oddelek: Operacijski sistemi		141445 (1264) Brane2
»

Linux / ATI Radeon / problem z driverji

Oddelek: Operacijski sistemi		131743 (1560) ahac
»

A.I. (strani: 1 2 )

Oddelek: Loža		554940 (3985) Thomas

Več podobnih tem