• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Linux Kernel do_mremap Function VMA Limit Local Privilege Escalation Vulnerability

Working exploit code has been released and is included in the attached "Linux kernel do_mremap VMA limit local privilege escalation vulnerability" advisory.

CORE has developed a working commercial exploit for their IMPACT
product. This exploit is not otherwise publicly available or known
to be circulating in the wild.

The following proof of concept supplied by Christophe Devine may be used to test this issue:

• /data/vulnerabilities/exploits/mremap_poc_2.c