250 matches found
Linux Root Access Vulnerabilities
US-CERT is aware of public reports of multiple vulnerabilities affecting Linux. Exploitation of these vulnerabilities may allow an attacker to access the system with root or "superuser" privileges. The first of these vulnerabilities is due to a flaw in the implementation of the Reliable Datagram...
Linux kernel RDS protocol vulnerability
Overview The RDS protocol implementation of Linux kernels 2.6.30 through 2.6.38-rc8 contain a local privilege escalation vulnerability. Description Kernel functions fail to properly check if a user supplied address exists in the user segment of memory. By providing a kernel address to a socket ca...
Linux kernel RDS protocol privilege escalation
It's possible to overwite kernel memory regions via recvmsg for RDS protocol...
VSR Advisories: Linux RDS Protocol Local Privilege Escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VSR Security Advisory http://www.vsecurity.com/ - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: Linux RDS Protocol Local Privilege Escalation Release Date: 2010-10-19 Application: Linux Kernel Versions:...
Linux Kernel Flaw Coughs Up Root Rights
The open-source Linux operating system contains a serious security flaw that can be exploited to gain superuser rights on a target system. The vulnerability, in the Linux implementation of the Reliable Datagram Sockets RDS protocol, affects unpatched versions of the Linux kernel, starting from...
Linux RDS Protocol Local Privilege Escalation
Exploit for linux platform in category local exploits ============================================= Linux RDS Protocol Local Privilege Escalation ============================================= / Linux Kernel Copyright 2010 Virtual Security Research, LLC The handling functions for sending and...
USN-1000-1: Linux kernel vulnerabilities
Dan Rosenberg discovered that the RDS network protocol did not correctly check certain parameters. A local attacker could exploit this gain root privileges. CVE-2010-3904 Al Viro discovered a race condition in the TTY driver. A local attacker could exploit this to crash the system, leading to a...
Linux Kernel 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
Linux Kernel 2.6.36-rc8 - RDS Protocol Local Privilege Escalation // source: http://www.vsecurity.com/resources/advisory/20101019-1/ / Linux Kernel Copyright 2010 Virtual Security Research, LLC The handling functions for sending and receiving RDS messages use unchecked copyuserinatomic functions...
Linux Kernel 2.6.36-rc8 - 'RDS Protocol' Local Privilege Escalation
// source: http://www.vsecurity.com/resources/advisory/20101019-1/ / Linux Kernel Copyright 2010 Virtual Security Research, LLC The handling functions for sending and receiving RDS messages use unchecked copyuserinatomic functions without any access checks on user-provided pointers. As a result, ...
CVE-2010-3904
The rdspagecopyuser function in net/rds/page.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg syste...