Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-3904 PoC — Linux Kernel RDS协议本地权限提升漏洞

Source
https://github.com/redhatkaty/-cve-2010-3904-report
Associated Vulnerability
Title:Linux Kernel RDS协议本地权限提升漏洞 (CVE-2010-3904)
Description:Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 在将数据拷贝到用户空间时,RDS协议没有确认用户所提供iovec结构的基址指向了有效的用户空间地址便使用__copy_to_user_inatomic()函数拷贝数据。因此,如果提供内核地址为iovec基址并发布recvmsg()样式套接字调用,本地用户就可以向内核内存中写入任意数据,导致root用户权限提升。
File Snapshot

 [4.0K]  /data/pocs/9a00282ac07804c9d92646db2d4849e7c57b86f2
└── [4.0K]  cve-2010-3904-Xinqi-Li
    ├── [6.3K]  rds.c
    └── [149K]  readingcoursewriteupXinqiLi.pdf

1 directory, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.