Fwd: Registration Weakness in Linux Kernel's Binary formats
Paweł Sikora
pluto w agmk.net
Wto, 3 Paź 2006, 21:20:23 CEST
---------- Forwarded Message ----------
Subject: Registration Weakness in Linux Kernel's Binary formats
Date: Tuesday 03 October 2006 21:13
From: SHELLCODE Security Research <GoodFellas w shellcode.com.ar>
To: undisclosed-recipients:;
Hello,
The present document aims to demonstrate a design weakness found in the
handling of simply
linked lists used to register binary formats handled by
Linux kernel, and affects all the kernel families
(2.0/2.2/2.4/2.6), allowing the insertion of infection modules in
kernel space that can be used by malicious users to create infection
tools, for example rootkits.
POC, details and proposed solution at:
English version: http://www.shellcode.com.ar/docz/binfmt-en.pdf
Spanish version: http://www.shellcode.com.ar/docz/binfmt-es.pdf
regards,
-------------------------------------------------------
Więcej informacji o liście dyskusyjnej pld-kernel