Comments on: Serious Linux Kernel Vulnerability For ALL 2.4 & 2.6 Kernels http://www.darknet.org.uk/2009/08/serious-linux-kernel-vulnerability-for-all-2-4-2-6-kernels/ Ethical Hacking, Penetration Testing & Computer Security Tue, 14 Feb 2012 00:17:07 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Morgan Storey http://www.darknet.org.uk/2009/08/serious-linux-kernel-vulnerability-for-all-2-4-2-6-kernels/#comment-158760 Morgan Storey Thu, 20 Aug 2009 01:20:46 +0000 http://www.darknet.org.uk/?p=2032#comment-158760 @joe Schmoe: Interesting they can't get their ssl right though for a security company (ssl cert is signed for www.atomicorp.com , atomicorp.com) @joe Schmoe: Interesting they can’t get their ssl right though for a security company (ssl cert is signed for http://www.atomicorp.com , atomicorp.com)

]]> By: Joe Schmoe http://www.darknet.org.uk/2009/08/serious-linux-kernel-vulnerability-for-all-2-4-2-6-kernels/#comment-158757 Joe Schmoe Wed, 19 Aug 2009 19:32:48 +0000 http://www.darknet.org.uk/?p=2032#comment-158757 The Atomic Secured Linux kernel is protected from this exploit: https://atomicrocketturtle.com/forum/viewtopic.php?f=13&t=3367 The Atomic Secured Linux kernel is protected from this exploit:

https://atomicrocketturtle.com/forum/viewtopic.php?f=13&t=3367

]]> By: Morgan Storey http://www.darknet.org.uk/2009/08/serious-linux-kernel-vulnerability-for-all-2-4-2-6-kernels/#comment-158736 Morgan Storey Wed, 19 Aug 2009 09:27:28 +0000 http://www.darknet.org.uk/?p=2032#comment-158736 This would be a major problem for all those shared hosting providers on linux, and shell providers... But not so much for some business, only ones who can access our nix systems are admins anyway, except via nfs/smb, I suppose they could construct a malicious file that caused the vuln somehow. But it isn't a remote code exec at least. This would be a major problem for all those shared hosting providers on linux, and shell providers… But not so much for some business, only ones who can access our nix systems are admins anyway, except via nfs/smb, I suppose they could construct a malicious file that caused the vuln somehow. But it isn’t a remote code exec at least.

]]> By: cantormath http://www.darknet.org.uk/2009/08/serious-linux-kernel-vulnerability-for-all-2-4-2-6-kernels/#comment-158731 cantormath Wed, 19 Aug 2009 07:09:52 +0000 http://www.darknet.org.uk/?p=2032#comment-158731 Copies of the exploit code. Just run the bash script. http://www.securityfocus.com/bid/36038/exploit * /data/vulnerabilities/exploits/wunderbar_emporium.tgz * /data/vulnerabilities/exploits/wunderbar_emporium-2.tgz * /data/vulnerabilities/exploits/wunderbar_emporium-3.tgz * /data/vulnerabilities/exploits/36038-4.tgz Copies of the exploit code. Just run the bash script.
http://www.securityfocus.com/bid/36038/exploit
* /data/vulnerabilities/exploits/wunderbar_emporium.tgz
* /data/vulnerabilities/exploits/wunderbar_emporium-2.tgz
* /data/vulnerabilities/exploits/wunderbar_emporium-3.tgz
* /data/vulnerabilities/exploits/36038-4.tgz

]]>