LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Explanation on uselib() Local Privilege Escalation Exploit
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-24-2015, 02:57 AM   #1
huangjie
LQ Newbie
 
Registered: Oct 2015
Posts: 5

Rep: Reputation: Disabled
Explanation on uselib() Local Privilege Escalation Exploit

Hi all, I'm recently doing research on https://www.exploit-db.com/exploits/895/. It's about using the race between msync and uselib to get root. But the code can be really confusing. Can anyone help explain it a little bit?
I have at least 2 question:
  • Why it needs to consume VMA?
  • How does msync_interval get the fake VMA?

Many thanks for your time.
Last edited by huangjie; 10-24-2015 at 03:37 AM.
 
Old 10-29-2015, 02:17 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
It needs to consume VMA to buy time to exploit the race condition?
As for the second question: how about you explain in detail what "msync_interval" does?
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Rowhammer vulnerability Leads to Kernel Privilege Escalation Habitual General 2 03-13-2015 01:33 AM
Possible ~/.local/share/applications privilege escalation in Gnome addux Linux - Security 1 03-24-2012 01:01 AM
postfix local privilege escalation... trist007 Linux - Security 4 03-30-2011 02:55 PM
Linux Privilege Escalation The.Hammer.911 Linux - Security 1 05-10-2007 06:07 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:33 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration