Network Security: Detailed info on [Full-disclosure] about PROC Vulnerability

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

[Full-disclosure] about PROC Vulnerability

from [cyberfox2002] Network Security

[Permanent Link]

Subject:	[Full-disclosure] about PROC Vulnerability
Date:	Fri, 28 Jul 2006 14:29:32 +0800


Hello.
                 I    had    downloaded    the    h00lyshit.c.    But    i    
encountered    several    problems.   
                 My    OS    is    Fedora    5.        Kernal:    2.6.11
                 At    first,    i    encounterd        Permission    denied.   
 When    I    ran    the    exploit    to    the    line        "i    =    
fork()",    the    error    is        printed.        And    ,    i    disabled 
   the    SELinux    in        /etc/selinux/config.    But    ,    an    new    
error    is    coming    forth.        --        Exec    Format    Error    .   
     I    knew    AOUT    format    used    by    the    exploit    is    older 
   than    ELF.    So    i    opened    the    /boot/config-2.6.11-1.1369_FC4   
 and  modified  CONFIG_BINFMT_AOUT  =  y  (  I  also  tried  to    =m  ).  
After  rebooting  ,  the  error  is  also  in  there  .  Exec  format  Error.  
.I  confused  ...      So  can  you  give  me  some  advice  ?  Please  ..  
Thanks.




Regards
Big Bear.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] about PROC Vulnerability, cyberfox2002 <= Re: [Full-disclosure] about PROC Vulnerability, Brendan Dolan-Gavitt

Previous by Date:	[Full-disclosure] Fwd: about PROC vulnerability, Big Bear
Next by Date:	[Full-disclosure] [SECURITY] [DSA 1128-1] New heartbeat packages fix local denial of service, Martin Schulze
Previous by Thread:	[Full-disclosure] Fwd: about PROC vulnerability, Big Bear
Next by Thread:	Re: [Full-disclosure] about PROC Vulnerability, Brendan Dolan-Gavitt
Indexes:	[Date] [Thread] [Top] [All Lists]