[27488] in bugtraq
Re: Linux Kernel Exploits / ABFrag
daemon@ATHENA.MIT.EDU (Cedric Blancher)
Thu Oct 17 23:07:49 2002
From: Cedric Blancher <blancher@cartel-securite.fr>
To: huang po <huangpo@hehe.com>
In-Reply-To: <20021017205532.22758.qmail@mail.securityfocus.com>
Content-Type: text/plain; charset=ISO-8859-15
Date: 17 Oct 2002 23:09:24 +0200
Message-Id: <1034888964.10226.16.camel@elendil>
Mime-Version: 1.0
Content-Transfer-Encoding: 8bit
Le jeu 17/10/2002 à 22:55, huang po a écrit :
> Even if it were true, it would be very much more harder to write so
> that it would affect *different* OS's: the differences in the TCP
> stacks are not that large, but significant for at least this purpose.
I completly agree this point.
For now, only concrete thing I saw about this rumor was kind of social
engineering stuff based on some "Bet you I can root your box through TCP
stack ?" challenge aimed to have target admin trace the attack using a
vulnerable tcpdump.
I can be wrong, but it seems to me quite difficult to have a kernel
exploit that works on both BSD and Linux, using the same
vulnerability...
--
Cédric Blancher <blancher@cartel-securite.fr>
IT systems and networks security expert - Cartel Sécurité
Phone : +33 (0)1 44 06 97 87 - Fax: +33 (0)1 44 06 97 99
PGP KeyID:157E98EE FingerPrint:FA62226DA9E72FA8AECAA240008B480E157E98EE
