Posts Tagged ‘local’

Rooting a Server without any Public Local Root Kernel Exploits!

Posted: 07/26/2012 in G.N.A.HackTeam, Hacking, Info, Linux Hacking, Mac Hacking
Tags: , , , , , , , , , , , , , , , , , , , , , , ,
15

Hello to Everyone!

As I told to another Comment of a Post I made, and because a Visitor of this Blog requested it, I will share with you some Methods on How to Root a Server when there isn’t any Local Root Kernel Exploit available!

(more…)

Mempodipper: Gain Root without Local Root Kernel Exploits

Posted: 07/20/2012 in G.N.A.HackTeam, Info, Linux Hacking
Tags: , , , , , , , , , , , , , ,
7

Mempodipper is a great Exploit that uses a Vulnerability found on ALL Linux kernels >=2.6.39 that haven’t been Patched, yet!

Extract from the Official Blog:

Mempodipper is an exploit for CVE-2012-0056. /proc/pid/mem is an interface for reading and writing, directly, process memory by seeking around with the same addresses as the process’s virtual memory space. In 2.6.39, the protections against unauthorized access to /proc/pid/mem were deemed sufficient, and so the prior #ifdef that prevented write support for writing to arbitrary process memory was removed. Anyone with the correct permissions could write to process memory. It turns out, of course, that the permissions checking was done poorly. This means that all Linux kernels >=2.6.39 are vulnerable, up until the fix commit for it a couple days ago. Let’s take the old kernel code step by step and learn what’s the matter with it.

(more…)