Home > slashdot > Hole In Linux Kernel Provides Root Rights

Hole In Linux Kernel Provides Root Rights

September 18th, 2010 09:23 admin Leave a comment Go to comments

oztiks writes with this excerpt from The H:
“A vulnerability in the 32-bit compatibility mode of the current Linux kernel (and previous versions) for 64-bit systems can be exploited to escalate privileges. For instance, attackers can break into a system and exploit a hole in the web server to get complete root (also known as superuser) rights or permissions for a victim’s system. According to a report, the problem occurs because the 32-bit call emulation layer does not check whether the call is truly in the Syscall table. Ben Hawkes, who discovered the problem, says the vulnerability can be exploited to execute arbitrary code with kernel rights. … Hawkes says the vulnerability was discovered and remedied back in 2007, but at some point in 2008 kernel developers apparently removed the patch, reintroducing the vulnerability. The older exploit apparently only needed slight modifications to work with the new hole.”

Source: Hole In Linux Kernel Provides Root Rights

Related Articles:

  1. RDS Protocol Bug Creates a Linux Kernel Hole, Now Fixed
  2. Root Privileges Through Linux Kernel Bug
  3. Linux Kernel Exploit Busily Rooting 64-Bit Machines
  4. 5-Year-Old Linux Kernel Bug Fixed
  5. Grinch Vulnerability Could Put a Hole In Your Linux Stocking
blog comments powered by Disqus