FreeBSD 4.x - Process Concealment Bypass

FreeBSD 4.x - Process Concealment Bypass source: https://www.securityfocus.com/bid/4768/info In FreeBSD, setting kern.psshowallprocs=0 via the sysctl call is meant to disable normal users from seeing any running processes that are not owned by them. The current implementation of this feature fail...

FreeBSD 4.x - Process Concealment Bypass

source: https://www.securityfocus.com/bid/4768/info In FreeBSD, setting kern.psshowallprocs=0 via the sysctl call is meant to disable normal users from seeing any running processes that are not owned by them. The current implementation of this feature fails to protest system process information. ...

CVE-2001-0482

The CVE-2001-0482 entry concerns Argus PitBull LX. It describes a configuration error that lets root bypass access controls and potentially cause a denial of service or run arbitrary commands by altering kernel tunables (MaxFiles, MaxInodes, ModProbePath) in /proc/sys via sysctl. The connected re...

Linux kernel does not properly validate user input via sysctl for negative value

Overview Unprivileged local users can exploit the sysctl Linux kernel program to gain privileged access. Description A program called sysctl in the Linux kernel allows a privileged local user to read or write runtime system settings. Unprivileged local users are also allowed to use sysctl to read...

CVE-2001-0482

Configuration error in Argus PitBull LX allows root users to bypass specified access control restrictions and cause a denial of service or execute arbitrary commands by modifying kernel variables such as MaxFiles, MaxInodes, and ModProbePath in /proc/sys via calls to sysctl...

CVE-2001-0316

CVE-2001-0316 affects Linux kernels 2.2 and 2.4 where sysctl can be invoked with a negative length, allowing unprivileged local users to read kernel memory and potentially obtain root privileges. Mitigation in the public records points to upgrading to kernel 2.2.19 or later (and vendor advisories...

CVE-2001-0316

Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a negative argument to the sysctl call...

Проблемы в linux kernel (sysctl и ptrace)

Отрицательное смещение в вызове sysctl позволеят обращаться к памяти ядра, кроме того через ptrace можно изменить выполнение setuid процесса. На intel-архитектурах кроме того возможет DoS...

Дырки в PitBull LX (kernel variable modification)

Атакующий с правами root может обойти защиту путем модификации переменных ядра через sysctl...

Linux kernel sysctl() vulnerability

Hi, OVERVIEW There exists a Linux system call sysctl which is used to query and modify runtime system settings. Unprivileged users are permitted to query the value of many of these settings. The unprivileged user passes in a buffer location and the length of this buffer. Unfortunately, by...

Linux Kernel 2.2.x - 'sysctl()' Memory Reading

/ source: https://www.securityfocus.com/bid/2364/info The Linux Kernel is the core of the Linux Operating System. It was originally written by Linus Torvalds, and is publicly maintained. A problem in the Linux kernel may allow root compromise. The sysctl call allows a privileged program to read o...

Linux Kernel 2.2.x - sysctl() Memory Reading

Linux Kernel 2.2.x - sysctl Memory Reading / source: https://www.securityfocus.com/bid/2364/info The Linux Kernel is the core of the Linux Operating System. It was originally written by Linus Torvalds, and is publicly maintained. A problem in the Linux kernel may allow root compromise. The sysctl...