Linux Kernel 2.6.30 - 'tun_chr_pool' NULL Pointer Dereference Vulnerability

2009-06-17T00:00:00
ID EDB-ID:33088
Type exploitdb
Reporter Christian Borntraeger
Modified 2009-06-17T00:00:00

Description

Linux Kernel 2.6.30 'tun_chr_pool()' NULL Pointer Dereference Vulnerability. CVE-2009-1897. Dos exploit for linux platform

                                        
                                            source: http://www.securityfocus.com/bid/35724/info

The Linux kernel is prone to a local NULL-pointer dereference vulnerability.

A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash an affected kernel, denying service to legitimate users.

This issue was introduced in Linux kernel 2.6.30. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/33088-1.tgz
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/33088-2.tgz