漏洞描述
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 2.6.39-rc1之前版本的fs/proc/array.c中的do_task_stat函数不能执行预期的uid检查。本地用户可通过读取已执行PIE二进制进程的/proc/#####/stat文件中的start_code和end_code域击败ASLR保护机制。
Linux kernel fs/proc/array.c do_task_stat函数信息泄露漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2023-4911: Looney Tunables Linux - Local Privilege Escalation
- POC CVE-2020-7209: LinuxKI Toolset <= 6.01 - Remote Command Execution
- POC finger-service-enabled: Linux Finger Should Be Disabled
- POC linux-account-lockout-threshold: Linux Account Lockout Threshold Check
- POC linux-anonymous-ftp-enabled: Linux Anonymous FTP Access Enabled
- POC linux-root-remote-login: Linux Root Remote Login Enabled - Misconfig
- POC linux-world-writable-file: Linux World-Writable File Permission
- POC smtp-open-relay: Linux SMTP Open Relay Misconfigured
- POC weak-password-complexity: Linux Password Complexity Not Enforced
- POC unsigned-kernel-mode-drivers-allowed: Installation of Unsigned Kernel-Mode Drivers Allowed
- POC linux-lfi-fuzz: Local File Inclusion - Linux
- POC linux-lfi-fuzzing: Linux - Local File Inclusion Fuzzing
- POC generic-linux-lfi: Generic Linux - Local File Inclusion