CVE-2004-0497

Related Files

raptor_chown.c

Posted Dec 31, 2004

Authored by Marco Ivaldi | Site 0xdeadbeef.info

Local exploit for a flaw in Linux kernel that allows for group ownership change and possible system compromise. Tested against Linux kernel versions 2.4.x through 2.4.27-rc3 and 2.6.x through 2.6.7-rc3.

tags | exploit, kernel, local

systems | linux

advisories | CVE-2004-0497

SHA-256 | 394ace8ae631f8551b925e291c9b4df9a9dbf06bdb3748733e63e42f78b2595d

Download | Favorite | View

Openwall Linux Kernel Patch

Posted Aug 10, 2004

Authored by Solar Designer | Site openwall.com

The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.

Changes: Corrects the access control check in the Linux kernel which previously wrongly allowed any local user to change the group ownership of arbitrary NFS-exported/imported files (CVE-2004-0497). Also adds a workaround for the file offset pointer races (CVE-2004-0415).

tags | overflow, kernel

systems | linux

advisories | CVE-2004-0497, CVE-2004-0415

SHA-256 | 93acccb9dfe362d3f5fe4bb7dac727680341d124ac1770799631c5005e47afe1

Download | Favorite | View

200420kernel.txt

Posted Jul 2, 2004

Site suse.com

SuSE Security Announcement - A problem exists in the Linux kernel 2.4 and 2.6 series where missing Discretionary Access Control (DAC) in the chown(2) system call allow an attacker with a local account the ability to change the group ownership of arbitrary files.

tags | advisory, arbitrary, kernel, local

systems | linux, suse

advisories | CVE-2004-0495, CVE-2004-0496, CVE-2004-0497, CVE-2004-0535, CVE-2004-0626

SHA-256 | 016299baba8db03cb7e0aa77aab766ca6012636db94e2bb330a1d595585702a8

Download | Favorite | View