| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20090323163728.82205rf2rlh1ae2w@www.ev6.net>
Date: Mon, 23 Mar 2009 16:37:28 +0000
From: mu-b@...it-labs.org
To: full-disclosure@...ts.grok.org.uk
Subject: FreeBSD/OS X kernel bug dump
All - the following are the exploits from the recent demonstrations at
Apple Mac OSX >= 10.4.0 local kernel root
http://www.digit-labs.org/files/exploits/xnu-hfs-fcntl.c
http://www.digit-labs.org/files/exploits/xnu-hfs-fcntl.sh
FreeBSD >= 7.0 ktimer local kernel root
(http://security.freebsd.org/advisories/FreeBSD-SA-09:06.ktimer.asc)
http://www.digit-labs.org/files/exploits/bsd-ktimer.c
other random stuff..
http://www.digit-labs.org/files/exploits/xnu-macfsstat-leak.c
http://www.digit-labs.org/files/exploits/xnu-profil-leak.c
http://www.digit-labs.org/files/exploits/xnu-appletalk-zip.c
all the above are old now, but still exist today...
christer/mu-b
--
mu-b
(mu-b@...it-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct."
- Anonymous, "P ?= NP"
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists