logs of my Life »

Posted By guegila 6 months, 2 weeks ago in Science & Technology
Prop it 2 Drop it

Biasanya seorang attacker setelah berhasil mengeksploitasi sebuah sistem dilanjutkan dengan aktifitas “ Previlige Escalation” dengan tujuan dapat berbuat banyak pada sistem, caranya dengan berbagai cara seperti trapdoor , local exploiting atau yang lainnya . Pada artikel ini dijelaskan bagaimana cara local exploiting dengan memanfaatkan bugs exit_notify pada kernel 2.6.29 ke bawah.

Bugs ini di temukan oleh Oleg Nestorov, konsepnya eksploit ini memperbolehkan kepada kita untuk mengirim arbitrary signal ke proses parent user ber-privileged penuh ke sistem (suidroot). ketika hal itu terjadi, child proses bersamaan dengan exit signal dapat berakibat yang pertama tereksekusinya suidroot binary dan fungsi exit() dalam kernel dan melewati proses otentifikasi kernel dan juga melibatkan utilitas chfn dan gpasswd untuk mendapatkan privilege root.

Read Full Story at logsmylife.wordpress.com »

28 Views Share Story 0 Comments Report

Submitted By:
guegila

Other Related Articles: All »

RSS Join the Discussion

+ Add Comment
Comments So Far: 0 (view all)
- Display

Add a Comment

Sign In With Your Propeller Account

Forgot your password?

Please keep your comments relevant to this story.

To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.

More News

Download Squad

10+ free, fast-booting Linux distros that aren't Chrome OS

Wallpaper Juggler downloads, automatically cycles high-res images from InterfaceLift

Best Linux software for new users

Facebook demands social suicides cease and desist

Safety Light: not just another iPhone flashlight

Engadget

Ion netbooks head-to-head: Atom, overcharged?

ASUS Eee PC 1001P with Atom N450 appears on Amazon.de

Palm likely calling its new Verizon models Pre Plus and Pixi Plus

jWIN strikes deal to sell products under Polaroid name

Sony Ericsson Xperia Pureness hands-on

Science Daily

Researchers demonstrate nanoscale X-ray imaging of bacterial cells

Rapid flu testing

New acoustic tools may reduce ship strikes on whales

Cardiovascular devices often approved by FDA without high-quality studies, study suggests

'Spaghetti' Scaffolding Could Help Grow Skin In Labs

More Stories »
More Stories »
More Stories »

Slashdot

Impressive Robot Hand From Shadow

IDEs With VIM Text Editing Capability?

The Rise of Machine-Written Journalism

Google Nexus Rumored To Cost $530 Or $180 w/Plan

5th Underhanded C Contest Now Open

Switched

3-D TV Soon to Be a Reality

Kim Kardashian Gets $10K Per Tweet

Attempted Bomber's Story Comes to Light via Online Forum Posts

Engadget App Comes to the iPhone and iPod touch

Google's Nexus One Gets Priced? Facebook Scams Predicted for 2010

TUAW

Fieldrunners updated to 1.3, offers two new maps as in-app purchases

iPhone devsugar: Improved Network Reachability routines

Dozen Daily Deals for December 30, 2009

Rumor Mill: Tablet to be large-scale iPhone

It's Wednesday: time for another TUAW TV Live episode at 5 PM ET

More Stories »
More Stories »
More Stories »

Submit a Story

Advertisement

Story Tags ?

exploit rooting exploiting local root explpiting

Hey! If you Sign In, you can add tags to this story!

Propping This Article

view all »

Dropping This Article

No one has dropped this story.

Groups Watching This

No groups are watching this story. Why not share it with your groups?

Also Submitted By

No one else has submitted this story.