CVE-2004-0415

Related Files

proc_kmem_dump.c

Posted Aug 16, 2004

Authored by iSEC Security Research | Site isec.pl

Proc_kmem_dump is a local exploit for Linux kernels v2.4.0 through 2.4.26 which allows unprivileged users to read kernel memory.

tags | exploit, kernel, local

systems | linux

advisories | CVE-2004-0415

SHA-256 | 4f60007e355fbef80214921ee9684ad4f948ab79890b3bf5b24770cdc6bb647e

Download | Favorite | View

Openwall Linux Kernel Patch

Posted Aug 10, 2004

Authored by Solar Designer | Site openwall.com

The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.

Changes: Corrects the access control check in the Linux kernel which previously wrongly allowed any local user to change the group ownership of arbitrary NFS-exported/imported files (CVE-2004-0497). Also adds a workaround for the file offset pointer races (CVE-2004-0415).

tags | overflow, kernel

systems | linux

advisories | CVE-2004-0497, CVE-2004-0415

SHA-256 | 93acccb9dfe362d3f5fe4bb7dac727680341d124ac1770799631c5005e47afe1

Download | Favorite | View

isec-0016-procleaks.txt

Posted Aug 5, 2004

Authored by Paul Starzetz | Site isec.pl

A critical security vulnerability has been found in the Linux kernel code handling 64bit file offset pointers. Successful exploitation allows local users to have access to kernel memory. Kernel series affected are 2.4.26 and below and 2.6.7 and below. Full exploit provided.

tags | exploit, kernel, local

systems | linux

advisories | CVE-2004-0415

SHA-256 | 92706af943a287522ac0045554f0149a454453a2c0f2f0482f4e4f98d714283a

Download | Favorite | View