Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-4699 PoC — Linux kernel 竞争条件漏洞

Source
https://github.com/vnik5287/cve-2014-4699-ptrace
Associated Vulnerability
Title:Linux kernel 竞争条件漏洞 (CVE-2014-4699)
Description:Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Intel处理器上的Linux kernel 3.15.3及之前的版本中存在竞争条件漏洞,该漏洞源于程序没有正确限制保存的RIP地址使用‘non-canonical’值。本地攻击者可借助特制的应用程序利用该漏洞获取特权,或造成拒绝服务。
Description
My old sysret / ptrace PoC
Readme
writeup https://duasynt.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis
File Snapshot

 [4.0K]  /data/pocs/2552a15ed59cdf279a93e530a4ace491f4f53654
├── [3.3K]  poc_v0.c
└── [  83]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.