[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <BLU148-W1626AD75458091C94D4A4B42D0@phx.gbl>
Date: Wed, 8 Dec 2010 11:58:58 -0600
From: John Jacobs <flamdugen@...mail.com>
To: <dan.j.rosenberg@...il.com>, <full-disclosure@...ts.grok.org.uk>,
<bugtraq@...urityfocus.com>
Subject: RE: [Full-disclosure] Linux kernel exploit
> I've included here a proof-of-concept local privilege escalation exploit
> for Linux. Please read the header for an explanation of what's going
> on. Without further ado, I present full-nelson.c:
Hello Dan, is this exploitation not mitigated by best practice
defense-in-depth strategies such as preventing the CAP_SYS_MODULE
capability or '/sbin/sysctl -w kernel.modules_disabled=1' respectively?
It seems it'd certainly stop the Econet/Acorn issue.
Curious to hear your input as I fear too many rely solely on errata updates and not a good defense-in-depth approach.
> Happy hacking,
> Dan
Cheers,
John Jacobs
Powered by blists - more mailing lists