Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
BID:22014
Info
Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
| Bugtraq ID: | 22014 |
| Class: | Unknown |
| CVE: |
CVE-2007-0257 |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 18 2006 12:00AM |
| Updated: | Mar 09 2007 05:45PM |
| Credit: | An anonymous researcher is credited with the discovery of this vulnerability. |
| Vulnerable: |
grsecurity grsecurity Kernel Patch 2.1.8 grsecurity grsecurity Kernel Patch 2.1.7 grsecurity grsecurity Kernel Patch 2.1.6 grsecurity grsecurity Kernel Patch 2.1.5 grsecurity grsecurity Kernel Patch 2.1.4 grsecurity grsecurity Kernel Patch 2.1.3 grsecurity grsecurity Kernel Patch 2.1.2 grsecurity grsecurity Kernel Patch 2.1.1 grsecurity grsecurity Kernel Patch 2.1 .0 grsecurity grsecurity Kernel Patch 2.0.2 grsecurity grsecurity Kernel Patch 2.0.1 grsecurity grsecurity Kernel Patch 1.9.4 |
| Not Vulnerable: | |
Discussion
Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
Grsecurity Kernel PaX is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to obtain superuser privileges. A successful attack can result in the complete compromise of the affected computer.
NOTE: The vendor disputes the issue, stating that the application is not vulnerable.
Digital Armaments has provided an exploit and updated advisory outlining specific details of this vulnerability. Please see the reference section for further information.
Grsecurity Kernel PaX is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to obtain superuser privileges. A successful attack can result in the complete compromise of the affected computer.
NOTE: The vendor disputes the issue, stating that the application is not vulnerable.
Digital Armaments has provided an exploit and updated advisory outlining specific details of this vulnerability. Please see the reference section for further information.
Exploit / POC
Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
Sample exploit code has been provided:
Sample exploit code has been provided:
Solution / Fix
Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
NOTE: The vendor disputes the issue, stating that the application is not vulnerable.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
NOTE: The vendor disputes the issue, stating that the application is not vulnerable.
References
Grsecurity Kernel PaX Local Privilege Escalation Vulnerability
References:
References:
- grsecurity Homepage (grsecurity)
- Digital Armaments Security Advisory 20.01.2007: Grsecurity Kernel PaX Vulnerabil ([email protected])
- Digital Armaments Security Pre-Advisory 11.01.2007: Grsecurity Kernel PaX - Loca (Digital Armaments pre-advisory is 01.10.2007)
- Re: Digital Armaments Security Advisory 20.01.2007: Grsecurity Kernel PaX Vulner ([email protected])