网管联盟 | 网管论坛 | 网管u家 | 网管博客 | 网管软件 | 网管求职 | 小游戏 | 网管搜索 | 网管原创 | 网管聚合 | 网管读摘 | 网管焦点 | 世界素材 | 会员投稿 | 会员中心 
中国网管联盟
Windows Linux Cisco 网络技术 数据库 黑客攻防 DotNet Java PHP 认证 新闻资讯 服务器 存储资讯 网络设备 网管学堂 技术专题 焦点 网吧频道
 当前位置: > bitsCN.com > 网络攻防 > 黑客技术 > Exploit > Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges  

Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges

2007-10-12  作者:bitsCN整理  来源:中国网管联盟  点评 投稿 收藏

Impact:  Root access via local system
Fix Available:  Yes   Vendor Confirmed:  Yes 
Version(s): prior to 2.6.22.7
Description:  A vulnerability was reported in the Linux Kernel, affecting the x86_64 architecture. A local user can obtain root privileges on the target system.

网管u家u.bitscn@com

The IA32 system call emulation function on AMD64 and Intel 64 platforms does not properly validate the %RAX register. A local user may be able to exploit this to access the system call table and execute arbitrary commands on the target system with root privileges.

中国网管联盟bitsCN.com

The vendor was notified on September 18, 2007.

网管u家u.bitsCN.com

Wojciech Purczynski of COSEINC PTE Ltd. and iSEC Security Research reported this vulnerability.
Impact:  A local user can obtain root privileges on the target system.
Solution:  The vendor has issued a fixed version (2.6.22.7).
Vendor URL:  www.kernel.org/ (Links to External Site)
Cause:  Access control error
Underlying OS:  Linux (Caldera/SCO), Linux (Conectiva), Linux (Debian), Linux (EnGarde), Linux (Gentoo), Linux (HP Secure OS), Linux (Immunix), Linux (Mandriva/Mandrake), Linux (Progeny Debian), Linux (Red Hat Enterprise), Linux (Red Hat Fedora), Linux (Red Hat Linux), Linux (SGI), Linux (Slackware), Linux (Sun), Linux (SuSE), Linux (Trustix), Linux (Turbo Linux), Linux (Ubuntu), Linux (Xandros) 网管u家www.bitscn.net
Reported By:  Wojciech Purczynski <cliph@isec.pl>
Message History:   This archive entry has one or more follow-up message(s) listed below.
Sep 28 2007  (Red Hat Issues Fix) Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges   (bugzilla@redhat.com)
Red Hat has released a fix for Red Hat Enterprise Linux 5.
Sep 28 2007  (Red Hat Issues Fix) Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges   (bugzilla@redhat.com)
Red Hat has released a fix for Red Hat Enterprise Linux 4.
Sep 28 2007  (Red Hat Issues Fix) Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges   (bugzilla@redhat.com)
Red Hat has released a fix for Red Hat Enterprise Linux 3. 网管u家u.bitscn@com

TAGs     Linux   Red   Hat   the   on   has   Enterprise   to   IA32   Fix   local      
 上一篇:CA BrightStor Hierarchical Storage Manager Bugs Let Remote Users Inject SQL Comm   下一篇:Apple iPhone Bugs Let Remote Users Dial Phone Numbers, Execute Arbitrary Code, a
相关文章列表
Linux Kernel IA32 System Call Lets Local Users Gain Elevated Privileges 评论:
loading.. 评论加载中…
评论:请自觉遵守互联网相关政策法规,评论不得超过250字。

验证码: 注册用户
本类热门排行:
1.Scripteen Free Image Hosting Script 1.
2.PPMate PPMedia Class ActiveX Control B
3.Apache mod_jk 1.2.19 Remote Buffer Ove
4.Microsoft Access (Snapview.ocx 10.0.55
5.Cisco IOS 12.3(18) FTP Server Remote E
6.Trend Micro OfficeScan ObjRemoveCtrl A
7.Windows Media Encoder wmex.dll ActiveX
8.Linux Kernel <= 2.6.20 with DCCP Su
9.NaviCOPA Web Server 2.01 Remote Buffer
10.Simple Machines Forum <= 1.1.5 Admi
最新推荐文章:
1.Cheats Complete Website 1.1.1 (itemid)
2.Drinks Complete Website 2.1.0 (drinkid
3.BitDefender Online Scanner 8 ActiveX H
4.PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA
5.PHP COM extensions (inconsistent Win32
6.PHP 4.4.6 crack_opendict() Local Buffe
7.Internet Explorer ActiveX bgColor Prop
8.CVSTrac 2.0.0 Post-Attack Database Res
9.GuppY <= 4.5.16 Remote Commands Exe
10.Trend Micro VirusWall Buffer Overflow
网管论坛交流:
·什么样的游戏,什么样的爱情.
·大家来开心一下吧---看了会很开心的东西-
·中国人不可不知道的知识
·@@小鹏◎◎小鹏同志与某位女明星亲密接触
·◎◎小鹏◎◎发现不明生物,居然正在交配
·[图文]^^^版主是什么?????
·泡论坛的女人是好女人
·做个“水性杨花”的女人
·献给mm俱乐部的所有mm
·深圳一集团企业电脑基础应用培训教程