Kernel Fun: freebsd

Showing posts with label freebsd. Show all posts

Wednesday, November 08, 2006

MOKB-08-11-2006: FreeBSD 6.1 UFS filesystem ffs_rdextattr() integer overflow

The UFS filesystem handling code of the FreeBSD 6.1 kernel fails to properly handle corrupted data structures, leading to exploitable memory corruption (DoS) issues and possible arbitrary code execution. This particular vulnerability is caused by an integer overflow, similar to MOKB-03-11-2006.

More details and debug information
Proof of concept: MOKB-08-11-2006.img.bz2
Related to MOKB-03-11-2006: FreeBSD 6.1 UFS filesystem ffs_mountfs() integer overflow

en 10:52 AM

Etiquetas: denial of service, freebsd, memory corruption, ufs

Friday, November 03, 2006

MOKB-03-11-2006: FreeBSD 6.1 UFS filesystem ffs_mountfs() integer overflow

The UFS filesystem handling code of the FreeBSD 6.1 kernel fails to properly handle corrupted data structures, leading to exploitable memory corruption (DoS) issues and possible arbitrary code execution. This particular vulnerability is caused by an integer overflow at ffs_mountfs() function.

More details:

http://projects.info-pull.com/mokb/MOKB-03-11-2006.html

en 11:17 AM

Etiquetas: denial of service, freebsd, integer overflow, memory corruption, ufs

Kernel Fun

Wednesday, November 08, 2006

MOKB-08-11-2006: FreeBSD 6.1 UFS filesystem ffs_rdextattr() integer overflow

Friday, November 03, 2006

MOKB-03-11-2006: FreeBSD 6.1 UFS filesystem ffs_mountfs() integer overflow

About Kernel Fun

Labels

Links

Blog Archive