|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Brad Spengler (spender
grsecurity.net)
Date: Thu Jul 16 2009 - 19:57:36 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Title says it all, exploit is at:
http://grsecurity.net/~spender/cheddar_bay.tgz
Everything is described and explained in the exploit.c file.
I exploit a bug that by looking at the source is unexploitable;
I defeat the null ptr dereference protection in the kernel on
both systems with SELinux and those without.
I proceed to disable SELinux/AppArmor/LSM/auditing
Exploit works on both 32bit and 64bit kernels.
Links to videos of the exploit in action are present in the exploit
code.
Greets to vendor-sec,
-Brad
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFKX8x/mHm2SUJF1GoRAo7vAJ90VyjmPcxs9ewjyR+zmQg6ZFcafwCfVLya
zPcYks5CG9lWB0L1uZp/koM=
=uVvj
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]